Enhancement of Business IT Alignment by Including Responsibility Components in RBAC

Christophe Feltus, Michaël Petit, Morris Sloman

Résultats de recherche: Contribution dans un livre/un catalogue/un rapport/dans les actes d'une conférenceArticle dans les actes d'une conférence/un colloque

122 Téléchargements (Pure)

Résumé

Good corporate governance requires an improvement of the definition and the enforcement of the employees' responsibility throughout the companies' processes. In the field of information technology, one translation of this requirement targets a strict alignment of the access control policy with the permissions needed by the employees to achieve the obligations linked to their responsibilities. There has been much work related to access control over three decades and Role Based Access Control (RBAC) has emerged as a reference model in that discipline. Although its advantages have been largely recognized, when taking into account the new governance constraints, it appears that its mechanism of assignment of users' permissions is improvable. In this paper, we propose enhancements of RBAC by taking into account the concept of responsibility and explain it can be modeled using the OWL Web Ontology Language.
langue originaleAnglais
titreProceedings of the CAiSE 2010 Workshop Business/IT Alignment and Interoperability (BUSITAL2010)
Sous-titreHeld in conjunction with CAiSE 2010 Conference
rédacteurs en chefM Petit, G Gal, A Castiaux, J Ralyté, P Plebani
Pages61-75
Nombre de pages15
Volume599
Etat de la publicationPublié - 2010

Empreinte digitale

Examiner les sujets de recherche de « Enhancement of Business IT Alignment by Including Responsibility Components in RBAC ». Ensemble, ils forment une empreinte digitale unique.

Contient cette citation