论文信息 - A case study of enterprise identity management system adoption in an insurance organization

A case study of enterprise identity management system adoption in an insurance organization

This case study describes the adoption of an enterprise identity management(IdM) system in an insurance organization. We describe the state of the organization before deploying the IdM system, and point out the challenges in its IdM practices. We describe the organization's requirements for an IdM system, why a particular solution was chosen, issues in the deployment and configuration of the solution, the expected benefits, and the new challenges that arose from using the solution. Throughout, we identify practical problems that can be the focus of future research and development efforts. Our results confirm and elaborate upon the findings of previous research, contributing to an as-yet immature body of cases about IdM. Furthermore, our findings serve as a validation of our previously identified guidelines for IT security tools in general.

[1] R. Stake. The art of case study research , 1995 .

[2] Wayne G. Lutters,et al. Network authentication using single sign-on: the challenge of aligning mental models , 2008, CHiMiT '08.

[3] Kirstie Hawkey,et al. Security practitioners in context: their activities and interactions , 2008, Int. J. Hum. Comput. Stud..

[4] Lorrie Faith Cranor,et al. Security and Usability: Designing Secure Systems that People Can Use , 2005 .

[5] Kasia Muldner,et al. Human, organizational, and technological factors of IT security , 2008, CHI Extended Abstracts.

[6] Vijayalakshmi Atluri,et al. The role mining problem: finding a minimal descriptive set of roles , 2007, SACMAT '07.

[7] Kirstie Hawkey,et al. An integrated view of human, organizational, and technological challenges of IT security management , 2009, Inf. Manag. Comput. Secur..

[8] Lujo Bauer,et al. Real life challenges in access-control management , 2009, CHI.

[9] Eben M. Haber. Security Administration Tools and Practices , 2005 .

[10] Kirstie Hawkey,et al. Guidelines for designing IT security management tools , 2008, CHiMiT '08.

[11] Konstantin Beznosov,et al. Towards understanding IT security professionals and their tools , 2007, SOUPS '07.