| Download ( PDF | 5MB) |
Reducing the Risk of Insider Misuse by Revising Identity Management and UserAccount Data
Pernul, Günther and Fuchs, Ludwig (2010) Reducing the Risk of Insider Misuse by Revising Identity Management and UserAccount Data. In: 2nd Int. Workshop on Managing Insider Security Threats, Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications (JoWUA). Morioka, Iwate, Japan.Date of publication of this fulltext: 31 May 2010 13:08
Book section
DOI to cite this document: 10.5283/epub.15129
Abstract
To avoid insider computer misuse, identity and authorization data referring to the legitimate users of the systems must be properly organized and constantly and systematically analyzed and evaluated. In order to support this, a methodology for structured Identity Management has been developed. This methodology includes gathering of identity data spread among different applications, systematic ...
To avoid insider computer misuse, identity and authorization data referring to the legitimate users of the systems must be properly organized and constantly and systematically analyzed and evaluated. In order to support this, a methodology for structured Identity Management has been developed.
This methodology includes gathering of identity data spread among different applications, systematic cleansing of user account data in order to detect semantic as well as syntactic errors, grouping of privileges and access rights, and semiautomatic engineering of user roles. Each of the steps involved includes quality criteria and comprehensive tool support. The focus of this paper is on the data
cleansing phase leading to feedback where insider misuse may occur due to existing privileges which go beyond the scope of the users’ current need-to-know.
Involved Institutions
Details
| Item type | Book section |
| Journal or Publication Title | Journal of Wireless Mobile Networks, Ubiquitous Computing and Dependable Applications (JoWUA) |
| Title of Book: | 2nd Int. Workshop on Managing Insider Security Threats, Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications (JoWUA) |
|---|---|
| Place of Publication: | Morioka, Iwate, Japan |
| Date | June 2010 |
| Institutions | Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) Informatics and Data Science > Department Information Systems > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) |
| Dewey Decimal Classification | 000 Computer science, information & general works > 004 Computer science |
| Status | Published |
| Refereed | Yes, this version has been refereed |
| Created at the University of Regensburg | Yes |
| URN of the UB Regensburg | urn:nbn:de:bvb:355-epub-151293 |
| Item ID | 15129 |
Export bibliographical data
Owner only: item control page
Download Statistics
Download Statistics