Abstract
The generalization of open and distributed system and the dynamicity of the environment make the Information Systems (IS) and consequently its access right management always more complex. Even if the support of this activity appears to be well handed by current sophisticated solutions, the definition and the exploitation of an access right management framework appropriately adapted for a company remains challenging. This statement is explained mainly by the continuous grow of the diversity of stakeholders' statuses and by the criticality of the resources to protect. To face that problem, the objectives of this paper are twofold. Firstly to make right management closer with business objectives by providing an innovative approach that focus on business goals for defining access policy. The ISO/IEC 15504 process-based model organization has been preferred for that research. Indeed, the structured framework that it offers for the description of activities allows to established meaningful links with responsibilities concepts. Secondly, to automate the deployment of policies through the infrastructure's components and devices by defining a multi-agent system architecture that provides autonomy and adaptability. Free and open source components have been privileged for the prototyping phase.
| Original language | English |
|---|---|
| Title of host publication | Proceeding of 3rd international conference on information and communication technologies : from theory to applications (ICTTA 08), Damascus, Syria |
| Pages | 1-6 |
| Number of pages | 6 |
| DOIs | |
| Publication status | Published - 2008 |
Keywords
- Policy engineering
- Business IT-alignment
- Identity management
- Agent-based architecture