On Optimal Employee Assignment in Constrained Role-Based Access Control Systems

Roy, Arindam and Sural, Shamik and Kumar Majumdar, Arun and Vaidyaa, Jaideep and Atluri, Vijayalakshmi (2017) On Optimal Employee Assignment in Constrained Role-Based Access Control Systems. ACM Transactions on Management Information Systems (ACM TMIS).

[img]
Preview
Text
On Optimal Employee Assignment in Constrained Role-Based Access Control Systems.pdf

Download (1MB) | Preview

Abstract

Since any organizational environment is typically resource constrained, especially in terms of human capital, organization managers would like to maximize the utilization of available human resources. However, tasks cannot simply be assigned to arbitrary employees since the employee needs to have the necessary capabilities for executing a task. Furthermore, security policies constrain the assignment of tasks to employees, especially given the other tasks assigned to the same employee. Since role-based access control (RBAC) is the most commonly used access control model for commercial information systems, we limit our attention to consider constraints in RBAC. In this article, we define the Employee Assignment Problem (EAP), which aims to identify an employee to role assignment such that it permits the maximal flexibility in assigning tasks to employees while ensuring that the required security constraints are met. We prove that finding an optimal solution is NP-complete and therefore provide a greedy solution. Experimental evaluation of the proposed approach shows that it is both efficient and effective.

Item Type: Article
Subjects: H Social Sciences > HB Economic Theory
Divisions: Faculty of Industrial Engineering and Informatics > Information System
Depositing User: staff repository 2
Date Deposited: 25 Jul 2018 17:55
Last Modified: 25 Jul 2018 18:47
URI: http://repository.ittelkom-pwt.ac.id/id/eprint/771

Actions (login required)

View Item View Item