A Financial Institution?s Legacy Mainframe Access Control System in Light of the Proposed NIST RBAC Standard

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Andrew D. Marshall

18th Annual Computer Security Applications Conference (ACSAC '02)

San Diego California

December 09-December 13

ISBN: 0-7695-1828-1

	ASCII Text	x
	Andrew D. Marshall, "A Financial Institution?s Legacy Mainframe Access Control System in Light of the Proposed NIST RBAC Standard," Computer Security Applications Conference, Annual, pp. 382, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002.

	BibTex	x
	@article{ 10.1109/CSAC.2002.1176310, author = {Andrew D. Marshall}, title = {A Financial Institution?s Legacy Mainframe Access Control System in Light of the Proposed NIST RBAC Standard}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2002}, issn = {1063-9527}, pages = {382}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176310}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - A Financial Institution?s Legacy Mainframe Access Control System in Light of the Proposed NIST RBAC Standard SN - 1063-9527 SP EP A1 - Andrew D. Marshall, PY - 2002 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Andrew D. Marshall, TD Bank Financial Group

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176310

In this paper we describe a mainframe access control system (DENT) and its associated delegated administration tool (DSAS) that were used in a financial institution for over 20 years to control access to banking transaction products. The fir st part of this paper describes the design and oper-ation of DENT/DSAS as an example of a long-lived access control system in a financial institution. A standard for Role-Based Access Control (RBAC) has recently been proposed by the United States National Insti-tute of Standards and Technology (NIST). The second part of this paper discusses how the functionality of DENT/DSAS could be achieved by applying its principles of operation within the NIST model. In so doing we also evaluate the proposed standard by validating it against the requirements embodied in a successful access control system. We conclude with some observations about the design of DENT/DSAS and suggestions for changes in the pro-posed RBAC standard to accommodate some features of DENT/DSAS that it does not appear to support.

Citation:

Andrew D. Marshall, "A Financial Institution?s Legacy Mainframe Access Control System in Light of the Proposed NIST RBAC Standard," acsac, pp.382, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.