Author :
Yahya, Bernardo N. ; Kwon, Minjung ; Bae, Hyerim
Abstract :
In supply chain environments, it is common that execution of a process involves interactions among multiple organizations. This requires delicate control of accessing sensitive data and information which are generated, managed, and shared among the participants by information systems such as business process management (BPM), supply chain management (SCM) and customer relationship management (CRM). In order to resolve this problem, traditional role-based access control (RBAC) model was introduced and it can provide a general method to control access to objects. However, the traditional RBAC model lacks in capability of addressing configurability, customizability, and scalability of user privileges in dynamic multi-organizational environments such as B2B, logistics and SCM. In this paper, we propose a privilege-template based RBAC model that can resolve problems related to effective access control for supply chain processes, which are assumed to be managed by the BPM system.
Keywords :
business process re-engineering; customer relationship management; management information systems; manufacturing data processing; process monitoring; security of data; supply chain management; B2B; CRM; RBAC; SCM; business process management; customer relationship management; information systems; logistics; role-based access control model; supply chain management; supply chain process monitoring; Access control; Customer relationship management; Data security; Information security; Logistics; Management information systems; Monitoring; Scalability; Supply chain management; Supply chains;
