Policy-Based Access Control Approach to Staff Activities of a Business Process
First Claim
1. A computer implemented method for dynamically assigning a staff activity to a human entity or organizational role, the computer implemented method comprising:
- receiving, from a process server, identification information about a staff activity in a business process at an access control system external to the process server;
responsive to initiation of the business process, resolving the staff activity at the access control system at runtime by assigning the staff activity to a user based on an access policy of the access control system to form a staff activity assignment; and
communicating the staff activity assignment from the access control system to the process server;
wherein the receiving, resolving, and communicating steps enable development of the business process to be decoupled from staff activity resolution at runtime.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer implemented method, data processing system, and computer program product for dynamically binding business process activities to human entities at deployment time. Identification information about a staff activity in a business process is received from a process server at an access control system external to the process server. Responsive to initiation of the business process, the staff activity is resolved at the access control system at runtime by assigning the staff activity to a user based on an access policy of the access control system to form a staff activity assignment. The staff activity assignment is communicated from the access control system to the process server. The process allows the development of the business process to be entirely decoupled from staff activity resolution at runtime.
86 Citations
20 Claims
-
1. A computer implemented method for dynamically assigning a staff activity to a human entity or organizational role, the computer implemented method comprising:
-
receiving, from a process server, identification information about a staff activity in a business process at an access control system external to the process server; responsive to initiation of the business process, resolving the staff activity at the access control system at runtime by assigning the staff activity to a user based on an access policy of the access control system to form a staff activity assignment; and communicating the staff activity assignment from the access control system to the process server; wherein the receiving, resolving, and communicating steps enable development of the business process to be decoupled from staff activity resolution at runtime. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A data processing system for dynamically assigning a staff activity to a human entity or organizational role, the data processing system comprising:
-
a bus; a storage device connected to the bus, wherein the storage device contains computer usable code; at least one managed device connected to the bus; a communications unit connected to the bus; and a processing unit connected to the bus, wherein the processing unit executes the computer usable code to receive, from a process server, identification information about a staff activity in a business process at an access control system external to the process server;
resolve the staff activity at the access control system at runtime by assigning the staff activity to a user based on an access policy of the access control system to form a staff activity assignment in response to initiation of the business process, and communicate the staff activity assignment from the access control system to the process server, wherein the computer usable code to receive, resolve, and communicate enable development of the business process to be decoupled from staff activity resolution at runtime. - View Dependent Claims (11)
-
-
12. A computer program product for dynamically assigning a staff activity to a human entity or organizational role, the computer program product comprising:
-
a computer usable medium having computer usable program code tangibly embodied thereon, the computer usable program code comprising; computer usable program code for receiving, from a process server, identification information about a staff activity in a business process at an access control system external to the process server; computer usable program code for resolving the staff activity at the access control system at runtime by assigning the staff activity to a user based on an access policy of the access control system to form a staff activity assignment in response to initiation of the business process; and computer usable program code for communicating the staff activity assignment from the access control system to the process server; wherein the computer usable program code for receiving, resolving, and communicating enable development of the business process to be decoupled from staff activity resolution at runtime. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification