Security management for administration and control of corporate-wide, diverse systems

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Security management for administration and control of corporate-wide, diverse systems

Full text

Pdf (750 KB)

Source

ACM SIGSAC Review archive
Volume 15 , Issue 1 (January 1997) table of contents

Pages: 4 - 10

Year of Publication: 1997

ISSN:0277-920X

Author

Gerhard Schimpf

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 1, Downloads (12 Months): 15, Citation Count: 2

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/250021.250022 What is a DOI?

ABSTRACT

The importance of high level management of complex information systems, extending over several heterogeneous and geographically distributed computing platforms, is rapidly increasing. The design of a comprehensive and enterprise-wide security strategy, including the efficient administration of large user groups while maintaining the access rights of tens of thousands of users, is next to impossible without support from sophisticated and powerful software toolsets. In this paper we highlight some applications of the software product Security Administration Manager (SAM). With SAM, the staff responsible for security administration has at its disposal an object-oriented tool to monitor the security management of a complex IS-environment.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	<i>Henderson, John C.; Venkatraman, N.:</i> Strategic alignment. Leveraging Information Technology for Transforming Organisations. In: IBM Systems Journal, 32 (1993) 1, pp. 4--16.
	2	<i>Rockart, John:</i> Redefining the IT Function, Seven Imperatives. Paper presented during CISR Summer Session on Current Issues in Managing Information Technology, MIT Sloan School of Management, Cambridge Mass. 1995.
	3	<i>Treacy, Michael; Wiersema, Fred:</i> The Discipline of Market Leaders. Addison Wesley, Reading MA 1995.
	4	<i>Doppler, Klaus; Lauterburg, Christoph:</i> Change Management. Den Unternehmenswandel gestalten. Campus, Frankfurt 1994 (in German).
	5	<i>Marty, Rudolf:</i> Informatik in einer Großbank. Anforderungen an universitäre Lehre und Forschung. Paper presented during GISI 95, Zürich 1995 (in German).
	6	<i>Sienkiewicz, Bodo S.:</i> Computer-Sicherheit. Addison Wesley, Bonn 1994 (in German).
	7	<i>Schaumüller-Bichl, Ingrid:</i> Sicherheitsmanagement. Risikobewältigung in informationstechnologischen Systemen. BI Wissenschaftsverlag, Mannheim 1992 (in German).
	8	<i>IBM Corporation:</i> IBM Security Architecture. Securing the Open Client/Server Distributed Enterprise, SC28-8135.
	9	<i>Schumann Unternehmensberatung AG:</i> Security Administration Manager (SAM). Release 2.0. Concepts and Facilities, Form V95-0430-04E, Köln 1995.
	10	<i>IBM Corporation:</i> MVS/ESA Planning B1 Security, GC28-1440.
	11	<i>IBM Corporation:</i> MVS/ESA Planning Security, GC28-1439.
	12	Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996 [doi>10.1109/2.485845]

CITED BY 2

	Haio Roeckle , Gerhard Schimpf , Rupert Weidinger, Process-oriented approach for role-finding to implement role-based security administration in a large industrial organization, Proceedings of the fifth ACM workshop on Role-based access control, p.103-110, July 26-28, 2000, Berlin, Germany
	Martin Kuhlmann , Dalia Shohat , Gerhard Schimpf, Role mining - revealing business roles for security administration using data mining technology, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy