On modeling system-centric information for role engineering

Dongwan Shin, Gail-Joon Ahn, Sangrae Cho, Seunghun Jin

Research output: Chapter in Book/Report/Conference proceedingConference contribution

38 Citations (Scopus)

Abstract

In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.

Original languageEnglish (US)
Title of host publicationProceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)
Pages169-178
Number of pages10
StatePublished - 2003
Externally publishedYes
EventProceedings of Eighth ACM Symposium on Access Control Models and Technologies - Villa Gallia, Como, Italy
Duration: Jun 2 2003Jun 3 2003

Other

OtherProceedings of Eighth ACM Symposium on Access Control Models and Technologies
CountryItaly
CityVilla Gallia, Como
Period6/2/036/3/03

Fingerprint

Information systems
Communication

Keywords

  • Attributive permissions
  • Information flow
  • Information model
  • Role engineering
  • Role-based access control

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Shin, D., Ahn, G-J., Cho, S., & Jin, S. (2003). On modeling system-centric information for role engineering. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) (pp. 169-178)

On modeling system-centric information for role engineering. / Shin, Dongwan; Ahn, Gail-Joon; Cho, Sangrae; Jin, Seunghun.

Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2003. p. 169-178.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Shin, D, Ahn, G-J, Cho, S & Jin, S 2003, On modeling system-centric information for role engineering. in Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). pp. 169-178, Proceedings of Eighth ACM Symposium on Access Control Models and Technologies, Villa Gallia, Como, Italy, 6/2/03.
Shin D, Ahn G-J, Cho S, Jin S. On modeling system-centric information for role engineering. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2003. p. 169-178
Shin, Dongwan ; Ahn, Gail-Joon ; Cho, Sangrae ; Jin, Seunghun. / On modeling system-centric information for role engineering. Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2003. pp. 169-178
@inproceedings{7b82eb2465224f17a1fc9c5185da4b54,
title = "On modeling system-centric information for role engineering",
abstract = "In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.",
keywords = "Attributive permissions, Information flow, Information model, Role engineering, Role-based access control",
author = "Dongwan Shin and Gail-Joon Ahn and Sangrae Cho and Seunghun Jin",
year = "2003",
language = "English (US)",
pages = "169--178",
booktitle = "Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)",

}

TY - GEN

T1 - On modeling system-centric information for role engineering

AU - Shin, Dongwan

AU - Ahn, Gail-Joon

AU - Cho, Sangrae

AU - Jin, Seunghun

PY - 2003

Y1 - 2003

N2 - In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.

AB - In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.

KW - Attributive permissions

KW - Information flow

KW - Information model

KW - Role engineering

KW - Role-based access control

UR - http://www.scopus.com/inward/record.url?scp=0242625196&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0242625196&partnerID=8YFLogxK

M3 - Conference contribution

SP - 169

EP - 178

BT - Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)

ER -