본문 바로가기
  • Home

An Integrated Management Model of OS-RBAC and Separation Of Duty Policy

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2010, 15(1), pp.167-175
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science

변창우 1

1인하공업전문대학

Accredited

ABSTRACT

Like most large organizations, there are business rules such as ‘separation of duty’ and ‘delegation’ which should be considered in access control. From a SOD point of view, previous SOD models built on the (Administrative) Role-Based Access Control model cannot present the best solution to security problems such as information integrity by the limited constituent units such as role hierarchy and role inheritance. Thus, we propose a new integrated management model of administration role-based access control model and SOD policy, which is called the OS-SoDAM. The OS-SoDAM defines the authority range in an organizational structure that is separated from role hierarchy and supports a decentralized security officer-level SOD policy in which a local security officer can freely perform SOD policies within a security officer’s authority range without the security officer’s intervention.

Citation status

* References for papers published after 2022 are currently being built.