Abstract
Usually, add-on security packages implement and manage access control via 'profiles', where a profile defines a set of users or resources. This paper discusses the concept of a 'role profile', where such a profile is linked to a specific (business) role in a company. A four-layered model is introduced which provides a framework for implementing the role-oriented approach in a company.
Original language | English |
---|---|
Pages (from-to) | 673-680 |
Number of pages | 8 |
Journal | Computers and Security |
Volume | 13 |
Issue number | 8 |
DOIs | |
Publication status | Published - 1994 |
Keywords
- Individual user profile
- Path Context Model
- Profile
- Resource profile
- Resource-oriented approach
- Role
- Role profile
- Transaction
- Transaction/project profile
- User-oriented approach
ASJC Scopus subject areas
- General Computer Science
- Law