Alignment of ReMMo with RBAC to Manage Access Rights in the Frame of Enterprise Architecture

Christophe Feltus, Michaël Petit, Éric Dubois

Research output: Contribution in Book/Catalog/Report/Conference proceedingChapter

121 Downloads (Pure)

Abstract

Aligning the business operations with the appropriate IT infrastructure is a challenging and critical activity. Without efficient business/IT alignment, the companies face the risk not to be able to deliver their business services satisfactorily and that their image is seriously altered and jeopardized. Among the many challenges of business/IT alignment is the access rights management which should be conducted considering the rising governance needs, such as taking into account the business actors' responsibility. Unfortunately, in this domain, we have observed that no solution, model and method, fully considers and integrates the new needs yet. Therefore, the paper proposes firstly to define an expressive Responsibility metamodel, named ReMMo, which allows representing the existing responsibilities at the business layer and, thereby, allows engineering the access rights required to perform these responsibilities, at the application layer. Secondly, the Responsibility metamodel has been integrated with ArchiMate® to enhance its usability and benefits from the enterprise architecture formalism. Finally, a method has been proposed to define the access rights more accurately, considering the alignment of ReMMo and RBAC. The research was realized following a design science and action design based research method and the results have been evaluated through an extended proof of concept at the Hospital Center in Luxembourg.
Original languageEnglish
Title of host publication2015 IEEE 9th International Conference on Research Challenges in Information Science (RCIS)
PublisherIEEE
Number of pages12
DOIs
Publication statusPublished - 13 May 2015
EventIEEE Ninth International Conference on Research Challenges in Information Science - Athens, Greece
Duration: 13 May 2015 → …

Scientific committee

Scientific committeeIEEE Ninth International Conference on Research Challenges in Information Science
Country/TerritoryGreece
CityAthens
Period13/05/15 → …

Fingerprint

Dive into the research topics of 'Alignment of ReMMo with RBAC to Manage Access Rights in the Frame of Enterprise Architecture'. Together they form a unique fingerprint.

Cite this