Verification of Access Control Coherence in Information System during Modifications

Linz, Austria June 09-June 11

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ENABL.2003.1231413

Twelfth International Workshop on Ena ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Gilles Goncalves Articles by Fred Hemery Articles by Aneta Poniszewska

	ASCII Text	x
	Gilles Goncalves, Fred Hemery, Aneta Poniszewska, "Verification of Access Control Coherence in Information System during Modifications," Enabling Technologies, IEEE International Workshops on, pp. 232, Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003.

	BibTex	x
	@article{ 10.1109/ENABL.2003.1231413, author = {Gilles Goncalves and Fred Hemery and Aneta Poniszewska}, title = {Verification of Access Control Coherence in Information System during Modifications}, journal ={Enabling Technologies, IEEE International Workshops on}, volume = {0}, year = {2003}, issn = {1080-1383}, pages = {232}, doi = {http://doi.ieeecomputersociety.org/10.1109/ENABL.2003.1231413}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Enabling Technologies, IEEE International Workshops on TI - Verification of Access Control Coherence in Information System during Modifications SN - 1080-1383 SP EP A1 - Gilles Goncalves, A1 - Fred Hemery, A1 - Aneta Poniszewska, PY - 2003 KW - null VL - 0 JA - Enabling Technologies, IEEE International Workshops on ER -

Gilles Goncalves, Universite d'Artois

Fred Hemery, Universite d'Artois

Aneta Poniszewska, Technical University of Lodz, Poland

The paper deals with management of access control in an information system. It is suggested that the security of an information system should be a task solved on two principal levels: system development level and security administration level. Consequently, the responsibility for creating e?ective security measures for an information system ought to lie with both the application developer and the global administration. Moreover, sets of security constraints should be formulated also on those two levels.

The paper de?nes requirements and obligations of each level using adapted tools based on the role-based access control (RBAC) model and employing the object-oriented conception method with UML (Unified Modeling Language).

It is shown how the process of addition of a new application to an information system may be automated and how the administrator can be assisted in detecting incoherences or/and determining new relations between the elements existing in a system, such as roles or permissions.

Citation:

Gilles Goncalves, Fred Hemery, Aneta Poniszewska, "Verification of Access Control Coherence in Information System during Modifications," wetice, pp.232, Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.