KIT | KIT-Bibliothek | Impressum

Extending Role-based Access Control for Business Usage

Klarl, Heiko; Molitorisz, Korbinian; Emig, Christian; Klinge, Karsten; Abeck, Sebastian

Abstract:
Role-based access control (RBAC) is used for managing
authorisation in IT systems, by utilising the concept of
roles. Existing approaches do not clearly define the term
“role” in its different contexts as well as not considering
the relation between roles and business process modelling.
Therefore this work introduces business and system rolebased
access control (B&S-RBAC). Established role-based
access control models are extended with a business perspective
and the term role is defined from a business and
from an IT perspective, resulting in business and system
roles. The relation between them is shown in a meta-model
and the usage of business roles for secure business process
modelling is explained.


Zugehörige Institution(en) am KIT Institut für Telematik (TM)
Publikationstyp Proceedingsbeitrag
Jahr 2009
Sprache Englisch
Identifikator ISBN: 978-0-7695-3668-2
URN: urn:nbn:de:swb:90-120131
KITopen ID: 1000012013
Erschienen in The Third International Conference on Emerging Security Information, Systems and Technologies
Seiten 136-141
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page