Helmut Petritsch describes the first holistic approach to Break-Glass which covers the whole life-cycle: from access control modeling (pre-access), to logging the security-relevant system state during Break-Glass accesses (at-access), and the automated analysis of Break-Glass accesses (post-access). Break-Glass allows users to override security restrictions in exceptional situations. While several Break-Glass models specific to given access control models have already been discussed in research (e.g., extending RBAC with Break-Glass), the author introduces a generic Break-Glass model. The presented model is generic both in the sense that it allows to model existing Break-Glass approaches and that it is independent of the underlying access control model.In Proceedings of the 16th ACM symposium on Access control models and technologies, SACMAT a#39;11, pages 73a82. ... Oracle role manager, 2009. url http:// www.oracle.com/ technetwork/articles/oracle-role-manager-wp-1-128095.pdf. Oracle.
|Publisher||:||Springer - 2014-09-19|