On modeling system-centric information for role engineering

Dongwan Shin, Gail-Joon Ahn, Sangrae Cho, Seunghun Jin

Research output: Chapter in Book/Report/Conference proceedingConference contribution

38 Scopus citations

Abstract

In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.

Original languageEnglish (US)
Title of host publicationProceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)
Pages169-178
Number of pages10
StatePublished - 2003
Externally publishedYes
EventProceedings of Eighth ACM Symposium on Access Control Models and Technologies - Villa Gallia, Como, Italy
Duration: Jun 2 2003Jun 3 2003

Other

OtherProceedings of Eighth ACM Symposium on Access Control Models and Technologies
CountryItaly
CityVilla Gallia, Como
Period6/2/036/3/03

Keywords

  • Attributive permissions
  • Information flow
  • Information model
  • Role engineering
  • Role-based access control

ASJC Scopus subject areas

  • Computer Science(all)

Fingerprint Dive into the research topics of 'On modeling system-centric information for role engineering'. Together they form a unique fingerprint.

  • Cite this

    Shin, D., Ahn, G-J., Cho, S., & Jin, S. (2003). On modeling system-centric information for role engineering. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) (pp. 169-178)