The M*-OBJECT Organisation Model for Enterprise Modelling of Integrated Engineering Environments

Leva, Antonio Di; Giolito, P.; Vernadat, François

doi:10.1177/1063293x9700500210

Cited by 4 publications

(2 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Other researchers have proposed visual and programming languages for organizational and office systems such as Officeaid-VPE [27], HI-VISUAL [28], M*- OBJECT [5], Regatta VPL [29], and ORM [6,10]. Officeaid-VPE and HI-VISUAL were limited to the description of single office tasks.…”

Section: Related Workmentioning

confidence: 99%

“…It is thus not adequate to model the flexible resource relationship that is required to support cooperative works. Others have proposed specific role models and methodologies for concurrent engineering such as M*-OBJECT [5], ORM [6], SAM* [7], and ObjectFlow [8,9]. They all start from the process view and tightly couple the organization model with the role model, and some even with the process model.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An object-oriented organizational model to support dynamic role-based access control in electronic commerce applications

Cheng

Proceedings of the 32nd Annual Hawaii International Conference on Systems Sciences. 1999. HICSS-32. Abstracts and CD-ROM of Ful

View full text Add to dashboard Cite

Role-based access control (RBAC) provides flexibility to security management over the traditional approach of using user and group identifiers. In RBAC, access privileges are given to roles rather than to individual users. Users acquire the corresponding permissions when playing different roles. Roles can be defined simply as a label, but such an approach lacks the support to allow users to automatically change roles under different contexts; this static method also adds administrative overheads in role assignment. In electronic commerce and other cooperative computing environments, access to shared resources has to be controlled in the context of the entire business process; it is therefore necessary to model dynamic roles as a function of resource attributes and contextual information.In this paper, an object-oriented organizational model, OMM, is presented as an underlying model to support dynamic role definition and role resolution in RBAC. The paper describes the OMM reference model and shows how it can be applied flexibly to capture the different classes of resources within a corporation, and to maintain the complex and dynamic roles and relationships between the resource objects. Administrative tools use the role model in OMM to define security policies for role definition and role assignment. At runtime, the resource manager queries the OMM system to resolve roles in order to authorize any access attempts. Similarly, cooperative computing software uses OMM to support task assignment and access control to business processes. Contrary to traditional approaches, OMM separates the organization model from the application model; thus it allows independent and flexible role modeling to reflect realistically a dynamic authorization subsystem in a rapidly changing business world.

show abstract