Professional Documents
Culture Documents
Kata Kunci: pengguna, role, SSD, DSD, hak akses, otoritas, administrator
vii
ABSTRACT
Access control provide the means how to control information systems have to
resources access. Access restrictions can be made for authorized users,
mechanism created to ensure that the information available to users are
allowed to access it. Static Separation of Duty (SSD) are the same users are
not allowed to get another role. So that users only have one role in the task
given to him. Dynamic Separation of Duty (DSD) was made possible its user
can be assigned as mutually exclusive roles. But role can not have to enabled
at the same time. DSD allows users in the role authorization is given so as to
allow no occurrence of a conflict of interest when the user is acting
independently, but the problem occurs when the policy was obtained by
activated simultaneously. This generally provides higher efficiency and
flexibility in DSD operational. The application of domain user authority is
experiencing major shortages in DSD implementing this in terms of mutually
exclusive. RBAC user caused by the loss of part of the realm of their authority.
Security Administrator does not need to specifically define the second conflict
in the access rights which have the same role as mutually exclusive
permissions because it will be done automatically. This is a stroke of luck for
administrators because in this way the administrator ceases to do so manually.
viii