BusiROLE: A Model for Integrating Business Roles into Identity Management

Fuchs, Ludwig; Preis, Anton

doi:10.1007/978-3-540-85735-8_13

Cited by 8 publications

(12 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…HyDRo is fully supported by the contROLE role development software which will be presented in section 4. HyDRo furthermore uses busiROLE [29] as Meta-Model.…”

Section: Methodological Backgroundmentioning

confidence: 99%

“…Organisational Roles (phase 5) represent job positions while Functional Roles (phase 6) correspond to the task bundles of employees. By allowing for the definition of business role types [29], HyDRo supports incremental role development. Phases 4, 5, and 6 from figure 3 are modelled similar, even though the underlying algorithms, the extent of hybrid communication, and the importance of OOS layer input information are varying.…”

Section: Role Developmentmentioning

confidence: 99%

See 1 more Smart Citation

HyDRo – Hybrid Development of Roles

Fuchs

Pernul

2008

Information Systems Security

Self Cite

View full text Add to dashboard Cite

Abstract. Defining valid enterprise-wide roles needs to be carried out on the basis of a predefined Role Development Methodology. Hybrid role development combining elements from Role Engineering and Role Mining is the most promising way to define enterprise-wide roles, however no such model has been published yet. We close this gap by analysing existing approaches and proposing HyDRo, a tool-supported methodology that facilitates existing identity information and access rights without neglecting the importance of information like managers' knowledge about their employees.

show abstract

“…HyDRo is fully supported by the contROLE role development software which will be presented in section 4. HyDRo furthermore uses busiROLE [29] as Meta-Model.…”

Section: Methodological Backgroundmentioning

confidence: 99%

Section: Role Developmentmentioning

confidence: 99%

HyDRo – Hybrid Development of Roles

Fuchs

Pernul

2008

Information Systems Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…All of them build upon the data elements known from the RBAC standard. A comparison of several models has been provided in Fuchs and Preis (2008).…”

Section: Role Modelsmentioning

confidence: 99%

“…Identity Management as part of ESM, as one driver for this area, has been a field of emerging interest from 2006 on, dealing with the management and administration of user data. Fuchs and Preis (2008) analyzed different role properties and use the notion of business roles that serve as intermediate elements between job-oriented business tasks and resource-oriented IT requirements. The tendency for implementing organization-wide user management infrastructures requires the development and enforcement of role-based security policies.…”

Section: Roles In Middleware Architecturesmentioning

confidence: 99%

Roles in information security – A survey and classification of the research area

Fuchs

Pernul

Sandhu

2011

Computers & Security

View full text Add to dashboard Cite

show abstract

“…In recent years, role-based access control model has been widely researched and applied in some database systems and operating systems [1], [2]. The most representative study is RBAC96 model defined by Ravi Sandhu et al Based on this model, the RBAC unified model was published as the NIST RBAC model in 2000 and adopted as ANSI/INCITS standard in 2004.…”

Section: Introductionmentioning

confidence: 99%

Atom-Role-Based Access Control Model

Cai

Huang

Hou

et al. 2012

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYRole-based access control (RBAC) model has been widely recognized as an efficient access control model and becomes a hot research topic of information security at present. However, in the large-scale enterprise application environments, the traditional RBAC model based on the role hierarchy has the following deficiencies: Firstly, it is unable to reflect the role relationships in complicated cases effectively, which does not accord with practical applications. Secondly, the senior role unconditionally inherits all permissions of the junior role, thus if a user is under the supervisor role, he may accumulate all permissions, and this easily causes the abuse of permission and violates the least privilege principle, which is one of the main security principles. To deal with these problems, we, after analyzing permission types and role relationships, proposed the concept of atom role and built an atom-role-based access control model, called ATRBAC, by dividing the permission set of each regular role based on inheritance path relationships. Through the application-specific analysis, this model can well meet the access control requirements.

show abstract

BusiROLE: A Model for Integrating Business Roles into Identity Management

Cited by 8 publications

References 15 publications

HyDRo – Hybrid Development of Roles

HyDRo – Hybrid Development of Roles

Roles in information security – A survey and classification of the research area

Atom-Role-Based Access Control Model

Contact Info

Product

Resources

About