University of Twente Student Theses


Implementing Information Security in Workflow Management System

Wang, Zhi (2012) Implementing Information Security in Workflow Management System.

[img] PDF
Abstract:The information security is important for many organizations and no exceptions for land administration organisations. The aim of this research is to develop information security requirements in GIS based Workflow Management System (WfMS). This research follows three steps as research approach namely determination of requirements, designing and prototyping Workflow Management System (WfMS). The requirements of information security are determined by reviewing theoretical literature and the literature on experiences found in four countries (British Columbia in Canada, England, China, and the Netherlands). Based on the issue of information security, and the interviewing of Dutch Kadaster, the design criteria are then developed. Confidentiality is about the grouping of the people. Different group have different privilege to access the data. Integrity means during the work is transferred, it cannot be modified. Therefore it is important to find who has modified the data illegally. Availability means the data has to be processed correctly before transferring to the other actors. So the processing quality should be concerned. Authenticity means that the data is trust worthy as always, when the surveyors or notaries want to see the boundaries, the buyer/seller has to show on the spot. No-repudiation means once the data is processed correctly and legally, no one can deny the editing. In this research the workflow of a generic land subdivision case is developed on the basis of design criteria. The criteria rely on the roles of actors, the responsibilities of each actor, the communication among actors and the organization of the job types. The versioning concept is used to realise these criteria. The notaries and the buyer or the seller can only check the data, therefore under the default database, only a query layer is given to let them check the parcel information. Surveyors, the administrators and the quality control managers have their own working versions under the default database. Administrator can edit both spatial data (for the provisional boundaries only) and non-spatial data (for ownership and person data). Surveyors can only edit spatial data (for the actual boundaries after field surveys). The quality control manager can view the data, but cannot edit any data. The workflow is prototyped and implemented in the ArcGIS Workflow Management System. The workflow is designed for a subdivision case and is divided into four steps, they are preparation, provisional registration, field surveying and office work, and the last step is finalizing and archiving. The results in running the workflow indicate that the workflow can realize the confidentiality, availability and the authenticity quite well. But the integrity cannot be realized totally, because the archiving of data is not within this research scope and it important to archive versions for the historical data. The non-repudiation is difficult to realize, because when the information is sent by E-mails, for the job notification, it is not secured enough. Also when the notaries want to attach a deed in the system, the only way to add attachments in workflow manager is to a shared hard disk. Non-repudiation is the element that can hardly be realized in ArcGIS Workflow Management System.
Item Type:Essay (Master)
Faculty:ITC: Faculty of Geo-information Science and Earth Observation
Programme:Geoinformation Science and Earth Observation MSc (75014)
Link to this item:
Export this item as:BibTeX
HTML Citation
Reference Manager


Repository Staff Only: item control page