TY  - JOUR
AB  - The paper discusses the assignment of security clearances to employees in a security conscious organisation. New approaches are suggested for solving two major problems. First, full implementation of the “need‐to‐know” principle is provided by the introduction of data access statements (DAS) as part of an employee’s job description. Second, for the problem of setting up border points between different security clearances, the paper introduces a fuzzy set model. This model helps to solve this problem, effectively connecting it with the cost of security.
VL  - 8
IS  - 5
SN  - 0968-5227
DO  - 10.1108/09685220010356247
UR  - https://doi.org/10.1108/09685220010356247
AU  - Janczewski Lech J.
AU  - Portougal Victor
PY  - 2000
Y1  - 2000/01/01
TI  - “Need‐to‐know” principle and fuzzy security clearances modelling
T2  - Information Management & Computer Security
PB  - MCB UP Ltd
SP  - 210
EP  - 217
Y2  - 2024/04/23
ER  -