Electronic business forum EEMA www.eema.org delivered the results of its Role Based Access Control (RBAC) project in the form of an RBAC User Guide, previewed at its Identity Solutions for Better Businesses workshop.
The purpose of the document is to act as a guide for administrators and decision-makers interested in investing in RBAC who are looking for guidance in understanding the technical concepts and business-related justification based upon real world experience. The contributors to the document are EEMA members from vendor, user and consultancy backgrounds, working as a team to bring to the guide a useful combination of market awareness and customer requirements as well as practical experience. The contributors included representatives from IBM, Critical Path, Siemens, The Royal Mail, Guardeonic, Longfield, KPMG and Nexus. Additional contributors to the RBAC project included representatives from The European Commission, NHSIA, Volvo,
RSA, CGNU, Protek and Volvo.
What they say
“One of the most important roles within an organisation’s IT infrastructure is the management of who can access an organisation’s primary assets – its application systems and the data they contain”, said David Goodman, chair of the project, chair of EEMA and IBM Tivoli Directory Integration Specialist. “Application access based on an employee’s identity profile alone is fraught with security and management issues, that an RBAC-based systems helps to avoid. This document is the result of users, vendors and consultants spending many hours exchanging views, experiences and ideas and marks the confluence of identity services and business process management. There is a tremendous amount of detailed information within the guide, which will be unquestionably invaluable to EEMA Members involved in Identity Management. I thank all team members for the outstanding contribution they made.?
