Enhacing security in the design of information systems

Irina Juhnov (2010) Enhacing security in the design of information systems. EngD thesis.

Abstract

This work covers security aspects in the design of information systems in connection with identity management. In the beginning we define terms of computer security based on access control. Later on we present the definition of identity management and describe the structure of indentity management systems. The core of this work is an owerview of the proposed approach, methods and recommendations for building secure information systems based on articles of different authors. Common poit of all approaches is that they all use the designing standard UML which is also presented in one of the chapters. From among all proposals on security aspects improvement we take the best ones and use them on a concrete example. As the framework for presenting best solutions we take the exsisting information system of University in Ljubljana with all the belonging applications. We demonstrate the best solutions for improving information system security with emphasis on management of digital identity and lifecycle of digital identity for a student and a teacher. At the end we critically compare all proposed expansions and stress their main advantages and disadvantages.

Item Type:

Thesis (EngD thesis)

Keywords:

Information systems security, design of information systems, access control, RBAC, identity management, UML, identity lifecycle

Number of Pages:

Language of Content:

Slovenian

Mentor / Comentors:

Name and Surname	ID	Function
doc. dr. Mojca Ciglarič	256	Mentor

Link to COBISS:

http://www.cobiss.si/scripts/cobiss?command=search&base=50070&select=(ID=7627604)

Institution:

University of Ljubljana

Department:

Faculty of Computer and Information Science

Item ID:

1024

Date Deposited:

03 Mar 2010 11:54

Last Modified:

13 Aug 2011 00:36

URI:

http://eprints.fri.uni-lj.si/id/eprint/1024

Actions (login required)

View Item