Direkt zum Inhalt
University of Regensburg
DE: this page in English

Fuchs, Ludwig ; Pernul, Günther ; Sandhu, Ravi

Roles In Information Security - A Survey And Classification Of The Research Area

Fuchs, Ludwig, Pernul, Günther and Sandhu, Ravi (2011) Roles In Information Security - A Survey And Classification Of The Research Area. Computers & Security.

Date of publication of this fulltext: 24 Aug 2011 07:23
Article
DOI to cite this document: 10.5283/epub.21886

[img]
Preview
Download ( PDF | 1MB)

Abstract

The concept of roles has been prevalent in the area of Information Security for more than 15 years already. It promises simplified and flexible user management, reduced administrative costs, improved security, as well as the integration of employees' business functions into the IT administration. A comprehensive scientific literature collection revealed more than 1300 publications dealing with ...

The concept of roles has been prevalent in the area of Information Security for more than 15 years already. It promises simplified and flexible user management, reduced administrative costs, improved security, as well as the integration of employees' business functions into the IT administration. A comprehensive scientific literature collection revealed more than 1300 publications dealing with the application of sociological role theory in the context of Information Security up to now. Although there is an ANSI/NIST standard and an ISO standard proposal, a variety of competing models and interpretations of the role concept have developed. The major contribution of this survey is a categorization of the complete underlying set of publications into different classes. The main part of the work is investigating 32 identified research directions, evaluating their importance and analyzing research tendencies. An electronic bibliography including all surveyed publications together with the classification information is provided additionally. As a final contribution potential future developments in the area of role-research are considered. (C) 2011 Elsevier Ltd. All rights reserved.

Alternative links to fulltext

Involved Institutions

Details

Item typeArticle
Journal or Publication TitleComputers & Security
Publisher:ELSEVIER ADVANCED TECHNOLOGY
Place of Publication:OXFORD
Date16 August 2011
InstitutionsBusiness, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Informatics and Data Science > Department Information Systems > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Identification Number
ValueType
10.1016/j.cose.2011.08.002DOI
KeywordsACCESS-CONTROL; SYSTEMS; MODELS; RBAC; Role-based access control; RBAC; Role theory; Information Security; Survey
Dewey Decimal Classification000 Computer science, information & general works > 004 Computer science
300 Social sciences > 330 Economics
StatusPublished
RefereedYes, this version has been refereed
Created at the University of RegensburgYes
URN of the UB Regensburgurn:nbn:de:bvb:355-epub-218868
Item ID21886

Export bibliographical data

Hochladedatum:24 Aug 2011 07:23/Metadata last modified: 29 Sep 2021 07:38

Owner only: item control page
Download Statistics

Download Statistics

Altmetric

Alternative Statistics (altmetrics)

More literature (via CORE)

More literature (via CORE)

nach oben