Governance of IT is becoming more and more necessary in the current financial economic situation. This trend does not avoid the definition of corporate and IT policies. To improve that matter, the paper has for objective to propose a methodology for defining policies that are closer to the business process, and based on the strict definition of the actors' responsibility. This responsibility model is mainly defined based on the three concepts of capability, accountability and commitment. The methodology is illustrated based on a case study that highlights how it is possible to implement access control mechanism through agent-based infrastructure by extracting requirements from company practices and process formalizations.
|titre||Proceedings of the 13th IFAC Symposium on Information Control Problems in Manufacturing (INCOM 09), Volume 13 | Part 1,Moscow, Russia.|
|rédacteurs en chef||Bakhtadze Natalia, Dolgui Alexre|
|Lieu de publication||V.A. Trapeznikov Institute of Control Sciences, Russia|
|Nombre de pages||6|
|Volume||13 part 1|
|Etat de la publication||Publié - 2009|