.... This paper aims to present a model for securing the EHR based on role-based access control (RBAC), attribute-based access control (ABAC) and the Clark-Wilson model. Design/methodology/approach A systematic literature review was conducted which resulted in the collection of secondary data that was used...

... uncovered during a grounded theory analysis of semi-structured interview data can be interpreted as policy attributes, the paper develops a grounded theory-based methodology that can be extended to elicit attribute-based access control style policies. In this methodology, user-participants are interviewed...

... be contacted at: ashumilov@it-claim.ru 19 12 2014 12 07 2015 13 07 2015 © Emerald Group Publishing Limited 2016 Emerald Group Publishing Limited Licensed re-use rights only Innovation Computer security Access control Client-server computing That kind of an editor...

... be contacted at: martin.butler@usb.ac.za © Emerald Group Publishing Limited 2015 User authentication Online banking Security Access control Differentiated authentication Risk profiling Yan et al. (2004 , p. 25) determined that users rarely choose passwords that are both hard...

... to this attack, although they have now mitigated the issue via CSRF tokens and the use of the “state” parameter. Kevin Curran can be contacted at: kj.curran@ulster.ac.uk © Emerald Group Publishing Limited 2015 Security Access control Integration between applications has become a commodity...

... touch-gesture-related features shown as below: NTM; NST; NMT; ATTM; ATST; and ATMT. Computer security Access control Mobile phones Cost-based measurement Touch dynamics User authentication Machine learning...

...Chang N. Zhang; Cungang Yang Information flow analysis is a necessary step to determine the information security for a given system. In this paper, we introduce an object oriented role‐based access control model (ORBAC) and illustrate that the confinement problem may occur on the ORBAC based system...

...Reinhardt A. Botha; Jan H.P. Eloff Workflow systems are often associated with business process re‐engineering (BPR). This paper argues that the functional access control requirements in workflow systems are rooted in the scope of a BPR project. A framework for access control in workflow systems...

...Charles Cresson Wood Discusses the necessity of computer access control mechanisms, particularly passwords, to protect information. Suggests that many organizations allow practices which compromise the security of their data. Highlights a policy on the proper storage of passwords and other security...

... to password‐cracking programs run by hackers, while external access via the Internet can be securely controlled by the TurnStyle Firewall System and the TurnStyle Internet Module. © MCB UP Limited 1996 Access control Data security Internet Security products Unix Security should...

.... The designs of an operator’s GSM system must take into account the environment and have secure procedures such as: the generation and distribution of keys; exchange of information between operators; the confidentiality of the algorithms. © MCB UP Limited 1996 Access control Data...

... 1996 Access control Architecture Flexible working Local area networks Overhead costs Quality of working life A changing economic climate, combined with considerable advances in business and information technology, are having a profound effect on the way organizations conduct...

... markets and technologies. Discusses security policy, privacy, security logs, encryption, virus attacks, Internet concerns, firewalls and auditing. Outlines the work of the Computer Emergency Response Team and the Computer Incident Advisory Capability in the USA. © MCB UP Limited 1996 Access...

... provided in the mainframe era has not been provided in the distributed environment. What must be considered now are the following issues:logical access controls access all platforms; improved network and platform reliability, and the ability to recover readily from disruption and disasters. Concludes...

... and solutions which can minimize exposures and business impact. © MCB UP Limited 1995 Access control Computer hardware Information technology Location Risk The placement of computer and communications equipment within premises is partly based on physical limitations, partly...

...John Campbell Describes a fifth‐operation software tool which is a powerful network manager that guards systems from intrusion and provides an accurate system asset register. © MCB UP Limited 1995 Access control Applications software Data security Local area networks Office...

...‐in is assumed; lock‐out of account when log‐in limit is exceeded; how long VMS will remember a log‐in failure,and other parameters dealing with dial‐up line access[ 6 ]. Access control Computer fraud Data security Espionage Information systems Laws Personnel policy Viruses Employees...

... to a network,can be included and easily administered under this architecture. © MCB UP Limited 1993 Access control Computer architectures Computer downsizing Data security 4 INFORMATION MANAGEMENT & COMPUTER SECURITY 1,3 A discussion of a "workstation-centric" architecture designed to provide...

... of security officers in a large Australian organization examined the security awareness of these officers and the reasons for, and current management practices of, shared logons. It was found that work flow efficiency was more important than access control and that policies for user group access control...