Skip to main content
  • Book
  • © 2014

Break-Glass

Handling Exceptional Situations in Access Control

  • Publication in the field of technical science

  • Includes supplementary material: sn.pub/extras

Buying options

eBook USD 69.99
Price excludes VAT (USA)
  • ISBN: 978-3-658-07365-7
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Softcover Book USD 89.99
Price excludes VAT (USA)

This is a preview of subscription content, access via your institution.

Table of contents (10 chapters)

  1. Front Matter

    Pages i-xiii
  2. Introduction

    • Helmut Petritsch
    Pages 1-14
  3. Background

    • Helmut Petritsch
    Pages 15-36
  4. A Generic Break-Glass Model

    • Helmut Petritsch
    Pages 37-50
  5. Policy Definition: Pre-Access

    • Helmut Petritsch
    Pages 51-91
  6. User Information: At-Access

    • Helmut Petritsch
    Pages 93-105
  7. Analysis: Post-Access

    • Helmut Petritsch
    Pages 107-124
  8. Implementation

    • Helmut Petritsch
    Pages 125-135
  9. Related Work

    • Helmut Petritsch
    Pages 137-163
  10. Evaluation

    • Helmut Petritsch
    Pages 165-175
  11. Discussion and Conclusion

    • Helmut Petritsch
    Pages 177-196
  12. Back Matter

    Pages 197-220

About this book

Helmut Petritsch describes the first holistic approach to Break-Glass which covers the whole life-cycle: from access control modeling (pre-access), to logging the security-relevant system state during Break-Glass accesses (at-access), and the automated analysis of Break-Glass accesses (post-access).

Break-Glass allows users to override security restrictions in exceptional situations. While several Break-Glass models specific to given access control models have already been discussed in research (e.g., extending RBAC with Break-Glass), the author introduces a generic Break-Glass model. The presented model is generic both in the sense that it allows to model existing Break-Glass approaches and that it is independent of the underlying access control model.

Contents

  • Generic Break-Glass model and Break-Glass lifecycle
  • Policy definition: pre-access
  • User information, recording the system state: at-access
  • Analysis: post-access

 Target Groups

  • Researchers and students in the field of computer science and access control, as well as scholars applying the concept of emergency access, e.g., in medical care
  • ¬†Application developers with demanding requirements regarding the access control system, e.g., using XACML; application architects for systems implementing emergency access

About the Author

Helmut Petritsch is currently working as developer of enterprise software at a German multinational company.

Keywords

  • Automated Post-Access Analysis
  • Break-Glass
  • Dynamic Access Control
  • Recording System State
  • Security Override

Authors and Affiliations

  • Strategic Customer Engagement, SAP AG, Walldorf, Germany

    Helmut Petritsch

About the author

Helmut Petritsch is currently working as developer of enterprise software at a German multinational company.

Bibliographic Information

Buying options

eBook USD 69.99
Price excludes VAT (USA)
  • ISBN: 978-3-658-07365-7
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Softcover Book USD 89.99
Price excludes VAT (USA)