Abstract
In this paper we present an approach to modeling system-centric information in order to facilitate role engineering (RE). In particular, we first discuss the general characteristics of the information required in RE. Afterwards, we discuss two informational flow types among authorities involved in RE process, forward information flow (FIF) and backward information flow (BIF), together with the introduction of an information model which is greatly suitable for use in the backward information flow. System-centric information is incorporated in the information model and UML extension mechanisms are exploited for modeling the information. Not only can the information model provide those different authorities with a method for both analysis of resources and communication of knowledge in the RE process, but it can also help lay a foundation for successful implementations of RBAC.
| Original language | English (US) |
|---|---|
| Title of host publication | Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) |
| Pages | 169-178 |
| Number of pages | 10 |
| State | Published - 2003 |
| Externally published | Yes |
| Event | Proceedings of Eighth ACM Symposium on Access Control Models and Technologies - Villa Gallia, Como, Italy Duration: Jun 2 2003 → Jun 3 2003 |
Other
| Other | Proceedings of Eighth ACM Symposium on Access Control Models and Technologies |
|---|---|
| Country/Territory | Italy |
| City | Villa Gallia, Como |
| Period | 6/2/03 → 6/3/03 |
Keywords
- Attributive permissions
- Information flow
- Information model
- Role engineering
- Role-based access control
ASJC Scopus subject areas
- Computer Science(all)