| Download ( PDF | 743kB) | |
| Download ( PDF | 1MB) |
Introducing Dynamic Identity and Access Management in Organizations
Kunz, Michael, Fuchs, Ludwig, Hummer, Matthias and Pernul, Günther (2015) Introducing Dynamic Identity and Access Management in Organizations. In: Information Systems Security. 11th International Conference, ICISS 2015, Kolkata, India, December 16-20, 2015. Proceedings. Lecture Notes in Computer Science, 9478. Springer, pp. 139-158. ISBN 978-3-319-26961-0 (online), 978-3-319-26960-3 (print).Date of publication of this fulltext: 14 Jan 2016 15:36
Book section
DOI to cite this document: 10.5283/epub.33180
Abstract
Efficient and secure management of access to resources is a crucial challenge in today’s corporate IT environments. During the last years, introducing company-wide Identity and Access Management (IAM) infrastructures building on the Role-based Access Control (RBAC) paradigm has become the de facto standard for granting and revoking access to resources. Due to its static nature, the management of ...
Efficient and secure management of access to resources is a crucial challenge in today’s corporate IT environments. During the last years, introducing company-wide Identity and Access Management (IAM) infrastructures building on the Role-based Access Control (RBAC) paradigm has become the de facto standard for granting and revoking access to resources. Due to its static nature, the management of role-based IAM structures, however, leads to increased administrative efforts and is not able to model dynamic business structures. As a result, introducing dynamic attribute-based access privilege provisioning and revocation is currently seen as the next maturity level of IAM. Nevertheless, up to now no structured process for incorporating Attribute-based Access Control (ABAC) policies into static IAM has been proposed. This paper closes the existing research gap by introducing a novel migration guide for extending static IAM systems with dynamic ABAC policies. By means of conducting structured and tool-supported attribute and policy management activities, the migration guide supports organizations to distribute privilege assignments in an application-independent and flexible manner. In order to show its feasibility, we provide a naturalistic evaluation based on two real-world industry use cases.
Alternative links to fulltext
Involved Institutions
Details
| Item type | Book section | ||||
| ISBN | 978-3-319-26961-0 (online), 978-3-319-26960-3 (print) | ||||
| Title of Book: | Information Systems Security. 11th International Conference, ICISS 2015, Kolkata, India, December 16-20, 2015. Proceedings | ||||
|---|---|---|---|---|---|
| Publisher: | Springer | ||||
| Other Series: | Lecture Notes in Computer Science | ||||
| Volume: | 9478 | ||||
| Page Range: | pp. 139-158 | ||||
| Date | 31 December 2015 | ||||
| Institutions | Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) Informatics and Data Science > Department Information Systems > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) | ||||
| Identification Number |
| ||||
| Keywords | Identity and Access Management IAM ABAC Policies | ||||
| Dewey Decimal Classification | 000 Computer science, information & general works > 004 Computer science 300 Social sciences > 330 Economics | ||||
| Status | Published | ||||
| Refereed | Yes, this version has been refereed | ||||
| Created at the University of Regensburg | Yes | ||||
| URN of the UB Regensburg | urn:nbn:de:bvb:355-epub-331804 | ||||
| Item ID | 33180 |
Export bibliographical data
Owner only: item control page
Download Statistics
Download Statistics