使用安全管理管理器(SAM)进行基于角色的访问控制

ACM Workshop on Role-Based Access Control Pub Date : 1997-11-06 DOI:10.1145/266741.266758

Roland Awischus

{"title":"使用安全管理管理器(SAM)进行基于角色的访问控制","authors":"Roland Awischus","doi":"10.1145/266741.266758","DOIUrl":null,"url":null,"abstract":"Security administration in large computer environments is a complex and expensive task. Many companies handle it by giving security administrators ownership of all data. If an update is required, a more or less automated workflow is in place to notify the administrator. This process is slow and error-prone. This practice is not mandatory access control (MAC) (no data labeling, etc.), it is rather a “degenerated” form of discretionary access control (DAC).","PeriodicalId":355233,"journal":{"name":"ACM Workshop on Role-Based Access Control","volume":"143 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1997-11-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"41","resultStr":"{\"title\":\"Role based access control with the security administration manager (SAM)\",\"authors\":\"Roland Awischus\",\"doi\":\"10.1145/266741.266758\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Security administration in large computer environments is a complex and expensive task. Many companies handle it by giving security administrators ownership of all data. If an update is required, a more or less automated workflow is in place to notify the administrator. This process is slow and error-prone. This practice is not mandatory access control (MAC) (no data labeling, etc.), it is rather a “degenerated” form of discretionary access control (DAC).\",\"PeriodicalId\":355233,\"journal\":{\"name\":\"ACM Workshop on Role-Based Access Control\",\"volume\":\"143 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1997-11-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"41\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"ACM Workshop on Role-Based Access Control\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/266741.266758\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Workshop on Role-Based Access Control","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/266741.266758","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 41

摘要

大型计算机环境中的安全管理是一项复杂而昂贵的任务。许多公司通过赋予安全管理员所有数据的所有权来处理这个问题。如果需要更新，则会有一个或多或少自动化的工作流来通知管理员。这个过程缓慢且容易出错。这种做法不是强制访问控制(MAC)(没有数据标签等)，而是一种“退化”形式的自由访问控制(DAC)。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Role based access control with the security administration manager (SAM)

Security administration in large computer environments is a complex and expensive task. Many companies handle it by giving security administrators ownership of all data. If an update is required, a more or less automated workflow is in place to notify the administrator. This process is slow and error-prone. This practice is not mandatory access control (MAC) (no data labeling, etc.), it is rather a “degenerated” form of discretionary access control (DAC).

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

ACM Workshop on Role-Based Access Control

自引率

0.00%

发文量