Supporting Compliant and Secure User Handling - A Structured Approach for In-House Identity Management

Vienna, Austria April 10-April 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ARES.2007.145

The Second International Conference o ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ludwig Fuchs Articles by Gunther Pernul

	ASCII Text	x
	Ludwig Fuchs, Gunther Pernul, "Supporting Compliant and Secure User Handling - A Structured Approach for In-House Identity Management," Availability, Reliability and Security, International Conference on, pp. 374-384, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.145, author = {Ludwig Fuchs and Gunther Pernul}, title = {Supporting Compliant and Secure User Handling - A Structured Approach for In-House Identity Management}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {374-384}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.145}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Supporting Compliant and Secure User Handling - A Structured Approach for In-House Identity Management SN - 0-7695-2775-2 SP374 EP384 A1 - Ludwig Fuchs, A1 - Gunther Pernul, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Ludwig Fuchs, University of Regensburg, Germany

Gunther Pernul, University of Regensburg, Germany

The catchword "compliance" dominates the actual debate about Identity Management and information security like few before. Companies need to comply with a variety of internal and external standards and regulations like the US SOX act. Identity Management is seen as a main provider of compliance in modern companies. However, its organisational aspects are underestimated in many projects, lacking a comprehensive approach to introduce in-house Identity Management. This work is based on the experiences gained from industry projects using Identity Management functionalities to strengthen security and to reach a high level of compliance. We develop a structured process-oriented methodology for introducing an Identity Management Infrastructure for organisations using drivers from IT security management to evaluate, rank, and implement subprojects. The methodology consists of an iterative process which enables even large and unstructured organisations to reach a suitable and profitable level of Identity Management by emphasising on organisational aspects rather than taking a merely technical approach.

Citation:

Ludwig Fuchs, Gunther Pernul, "Supporting Compliant and Secure User Handling - A Structured Approach for In-House Identity Management," ares, pp.374-384, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.