CSDL Home H HICSS 2005 Proceedings of the 38th Annual Hawaii International Conference on System Sciences
Big Island, HI, USA
Jan. 6, 2005 to Jan. 6, 2005
Dickson K. W. Chiu , Dickson Computer Systems, Hong Kong
Patrick C. K. Hung , University of Ontario Institute of Technology, Canada
Financial Enterprise Content Management Systems (FECMS) have been recently deployed not only in intra-enterprises but also over the Internet to interact with customers. As FECMS contains a lot of sensitive and confidential information, there is an urgent need for tackling privacy and access control issues in these systems. In this paper, we proceed with our case study in an international banking enterprise on these issues. The FECMS is based on Web services technologies and we demonstrate the key privacy and access control policies for internal content flow management (such as content editing, approval, and usage) as well as external access control for Web portal and institutional programmatic users. Through the modular design of an integrated FECMS, we illustrate how we can systematically specify privacy and access control policies in each part of the system with the technology of Enterprise Privacy Authorization Language (EPAL)..
Dickson K. W. Chiu, Patrick C. K. Hung, "Privacy and Access Control Issues in Financial Enterprise Content Management", HICSS, 2005, Proceedings of the 38th Annual Hawaii International Conference on System Sciences, Proceedings of the 38th Annual Hawaii International Conference on System Sciences 2005, pp. 95c, doi:10.1109/HICSS.2005.504