Integrating business process modelling and ERP role engineering Online publication date: Tue, 30-Sep-2014
by Nikolaos A. Panayiotou, Sotiris P. Gayialis, Nikolaos E. Evangelopoulos
International Journal of Business Information Systems (IJBIS), Vol. 8, No. 1, 2011
Abstract: One of the essential services which information security relies on is access control. Access control is concerned with controlling the access permissions of a user to an object. The rigorous use of IT enabling technology and the implementation of large ERP systems have increased the importance of access control and especially this of role-based access control (RBAC). The success of a policy based on RBAC depends on the implementation of the role model which calls for both business engineering and information technology skills. This paper proposes a bottom-up and top-down combined approach for system roles implementation. The approach is integrated to ARIS modelling methods supporting the creation of the role system and facilitating its maintenance and future improvement. The application of the proposed approach is demonstrated in a case study of ERP role engineering in a medium industrial company.
Online publication date: Tue, 30-Sep-2014
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Business Information Systems (IJBIS):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email email@example.com