Using Virtual Webs and Security Brokers to Provide Composable Workflow Processes with Dynamic Definition and Enforcement of Security Policie

Workflow Processes are used to organize and control information access and processing in networked computing environments. There is a need to begin developing standards and mechanisms that can be used to provide dynamic, configurable, secure, and verifiable workflow systems. In a multi-user, multi-source, multi-classification environment, robust security is anything but simple. We propose to investigate a number of emerging technologies and paradigms which have the potential to provide support mechanisms for a comprehensive, dynamic approach to workflow definition and security. Two methodologies (and their supporting mechanisms) are proposed for investigation and development. The first technology is that of "Webs" which provide a method for defining and visualizing the participants, workflows, information flows, and security. The web concept provides the basis for establishing reference standards at the process and process definition level. Leveraging the dynamic definition provided by webs, security can be provided dynamically using Security Brokers. These agents provide dynamic enforcement of security policies on a case-by-case basis. Security Brokers can be used for system-wide as well as individual control. This proposed technology can be provided as application middleware in standard networked computing environments, as a service in a distributed object management environment (DOM), or within groupware environments.