产业链协同SaaS平台业务流程定制安全技术研究  被引量:8

Research on Security Technology of Workflow Customization for Collaborative SaaS Platform of Industrial Chains

在线阅读下载全文

作  者:曹帅[1] 王淑营[1] 

机构地区:[1]西南交通大学CAD工程中心成都610031

出  处:《计算机科学》2014年第1期230-234,共5页Computer Science

基  金:国家科技支撑计划课题(2011BAH21B02,2011BAH21B03);四川省科技攻关技术项目(2010GZ0189);制造业产业链协同与信息化支撑技术四川省重点实验室开放项目(2013-002)资助

摘  要:针对产业链协同SaaS平台企业群以盟主企业为核心的业务流定制过程中的流程规则编排、存储/访问以及执行控制3个环节可能存在的安全隐患,建立了基于数字签名及业务实例关联的业务流程安全控制模型,对XML数字签名和验证模式、存储策略及模型执行策略进行了研究,提出了基于用户身份认证和业务实例关联的安全签名、存储和执行算法。对该安全模型和算法在汽车产业链协同SaaS平台企业群车辆售后的三包业务流程定制和执行过程进行了验证,结果表明其能防止业务流程在编排、存储和执行过程中被非法篡改和调用。A workflow control security model for security risks that may exist in the process of workflow rules choreog- raphy,storage/access and execution control in the workflow customization of collaborative SaaS platform of industrial chains with dominant enterprise as core was proposed based on the digital signature and service instance association. Ac- cording to the research on the XML digital signature alone with its validating procedure and the strategy on storage and executing models, a digital signature which includes methods of validating the identity of users and is related to business operations, way of storing and arithmetic was proposed. The security model and arithmetic were validated in the custom- ization and execution of the after service of vehicle on the collaborative SaaS platform of industrial chains, showing that it can prevent illegal tampering and transferring of workflow in the process of choreography, storage and execution.

关 键 词:SaaS平台 安全 流程定制 数字签名 

分 类 号:TP393.0[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象