Methods of Data Processing Restriction in ERP Systems
P. Zhezhnych and D. Tarasov, "Methods of Data Processing Restriction in ERP Systems," 2018 IEEEi 13th International Scientific and Technical Conference on Computer Sciences and Information Technologies (CSIT), Lviv, Ukraine, 2018, pp. 274-277.
doi: 10.1109/STC-CSIT.2018.8526734
Abstract:
Minimizing of risks caused by data processing and related to the violation of information security is an important task of ERP-systemi management. This paper discusses methods of data processing restriction that largely allow avoiding of situations that lead to information security violations. The proposed methods called CU‘D’ and CU’ are based on discovering of peculiarities of needs to manipulate data at different stages of processing that mean limited usage of Update and Delete data operations. These peculiarities allow forming of transition maps between data processing stages and the corresponding rules of applying of data manipulation operations. The advantage of the developed methods is the possibility of their implementation at the logical level of a databasei with a set of views without any development of special softwarei units. The methods allow reducing rates of violations of data confidentiality and integrity caused by Update and Delete operations.
keywords:
{Data processing;Databases;Software;Data privacy;Companies;Computer networks;data processing;database;database scheme;information security;ERP system;SQLi;workflow},
URL: http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8526734&isnumber=8526581
Додати новий коментар