Scholars@Duke

Real life challenges in access-control management

Publication ,  Conference
Bauer, L; Cranor, LF; Reeder, RW; Reiter, MK; Vaniea, K
Published in: Conference on Human Factors in Computing Systems - Proceedings
December 1, 2009
Published version (DOI)

In this work we ask the question: what are the challenges of managing a physical or file system access-control policy for a large organization? To answer the question, we conducted a series of interviews with thirteen administrators who manage access-control policy for either a file system or a physical space. Based on these interviews we identified three sets of real-world requirements that are either ignored or inadequately addressed by technology: 1) policies are made/implemented by multiple people; 2) policy makers are distinct from policy implementers; and 3) access-control systems don't always have the capability to implement the desired policy. We present our interview results and propose several possible solutions to address the observed issues. Copyright 2009 ACM.

Duke Scholars

Michael Reiter
Author Michael Reiter Computer Science

Published In

Conference on Human Factors in Computing Systems - Proceedings

DOI

10.1145/1518701.1518838

Publication Date

December 1, 2009

Start / End Page

899 / 908

Related Subject Headings

  • 3507 Strategy, management and organisational behaviour
  • 1503 Business and Management
  • 1202 Building
 

Citation

APA
Chicago
ICMJE
MLA
NLM
Bauer, L., Cranor, L. F., Reeder, R. W., Reiter, M. K., & Vaniea, K. (2009). Real life challenges in access-control management. In Conference on Human Factors in Computing Systems - Proceedings (pp. 899–908). https://doi.org/10.1145/1518701.1518838
Bauer, L., L. F. Cranor, R. W. Reeder, M. K. Reiter, and K. Vaniea. “Real life challenges in access-control management.” In Conference on Human Factors in Computing Systems - Proceedings, 899–908, 2009. https://doi.org/10.1145/1518701.1518838.
Bauer L, Cranor LF, Reeder RW, Reiter MK, Vaniea K. Real life challenges in access-control management. In: Conference on Human Factors in Computing Systems - Proceedings. 2009. p. 899–908.
Bauer, L., et al. “Real life challenges in access-control management.” Conference on Human Factors in Computing Systems - Proceedings, 2009, pp. 899–908. Scopus, doi:10.1145/1518701.1518838.
Bauer L, Cranor LF, Reeder RW, Reiter MK, Vaniea K. Real life challenges in access-control management. Conference on Human Factors in Computing Systems - Proceedings. 2009. p. 899–908.

Published In

Conference on Human Factors in Computing Systems - Proceedings

DOI

10.1145/1518701.1518838

Publication Date

December 1, 2009

Start / End Page

899 / 908

Related Subject Headings

  • 3507 Strategy, management and organisational behaviour
  • 1503 Business and Management
  • 1202 Building