Management of Information Technology Access Controls

Pollack, Michael R.

Management of Information Technology Access Controls

Active / Technical Report | Accession Number: ADA236275 |

Open PDF

Abstract:

System access control directs, regulates, and coordinates the logical, physical, and administrative protection capabilities pertaining to interactions with an information system IS. System access control, a subset of information technology IT and general business controls, are IS securitys critical first line of defense. It has traditionally progressed by increasing the speed and memory, and decreasing the size of centralized IS. However, recent movements toward distributed IS and the accompanying architectural changes present new management challenges, especially in the area of controlling system access. Distributed IS magnifies potential control problems because it relies upon inherently less secure hardware and software, and increases potential system access points through local and telecommunication interconnection. However, the biggest threat to system access control is found within the organizations own workforce. These issues motivated the development of an Access Control Management Model.

Author(s):

Pollack, Michael R.

Author Organization(s):

COLORADO UNIV AT COLORADO SPRINGS

Descriptive Note:

Master's thesis,

Pagination:

0118

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Monitor Series:

XD

Subject Terms

Joint Capability Areas:

JCA_5_Command and Control; JCA_5.3_Planning; JCA_4.2_Supply; JCA_4.2.1_Manage Supplies and Equipment; JCA_5.6_Monitor; JCA_6_Net Centric; JCA_5.5_Direct; JCA_2_Battlespace Awareness; JCA_2.1_Planning and Direction; JCA_5.5.1_Communicate Intent and Guidance; JCA_5.6.3_Assess Achievement of Objectives; JCA_5.3.3_Develop Strategy; JCA_6.1.3_Switching and Routing; JCA_5.3.4_Develop Courses of Action; JCA_5.3.5_Analyze Courses of Action; JCA_6.1.2_Wireless Transmission; JCA_6.1_Information Transport; JCA_5.6.1_Assess Compliance with Guidance; JCA_5.3.2_Apply Situational Understanding; JCA_6.4.2_Protect Data and Networks; JCA_2.1.4_Evaluation

Modernization Areas:

Space

Communities of Interest:

Space

Descriptor(s):

*COMPUTER PROGRAMS, COMMERCE, MANAGEMENT PLANNING AND CONTROL, MANAGEMENT, INFORMATION SYSTEMS, MODELS, SECURITY, PROTECTION, CIRCUIT INTERCONNECTIONS, ACCESS, PERSONNEL, TELECOMMUNICATIONS, WORK, ARCHITECTURE, CONTROL

Field(s)/Group(s):

Computer Systems

Keyword(s):

*MANAGEMENT INFORMATION SYSTEMS, *ACCESS, *CONTROL SYSTEMS, THESIS

Report Date:

1991 Jan 01