Zakiakhdan, Muhamad Dafian (2025) Reenginering myITS Security Management With Centralized Role-Based Access Control Implementation For Each Application For Feature-Level Access Management. Other thesis, InstitutTeknologi Sepuluh Nopember.
![[thumbnail of 5025211108-Undergraduate_Thesis.pdf]](http://repository.its.ac.id/style/images/fileicons/text.png) |
Text
5025211108-Undergraduate_Thesis.pdf - Accepted Version Restricted to Repository staff only Download (10MB) | Request a copy |
Abstract
Role-Based Access Control (RBAC) adalah kerangka kerja yang mengatur hak akses menggunakan konsep role untuk mengelompokkan permission tertentu. ITS menerapkan RBAC melalui sistem myITS Security Management untuk mengelola hak akses aplikasi yang terintegrasi dalam Single Sign-On (SSO). Namun, sistem saat ini masih berbasis paradigma Create, Read, Update, dan Delete (CRUD) yang mana memiliki keterbatasan dalam mengakomodasi kebutuhan aplikasi berbasis Domain-Driven Design (DDD), terutama dalam pengelolaan hak akses hingga tingkat fitur. Tugas akhir ini bertujuan untuk merancang ulang sistem myITS Security Management dengan RBAC berbasis paradigma DDD, yang mendukung pengelolaan hak akses per aplikasi secara independen dan pengaturan permission hingga ke tingkat fitur. Pada tugas akhir ini juga akan disusun strategi migrasi dari sistem lama ke sistem baru tanpa mengganggu operasional aplikasi yang telah terintegrasi dengan sistem lama. Solusi yang dihasilkan diharapkan mampu meningkatkan fleksibilitas pengelolaan hak akses, keamanan data, dan efisiensi sistem di lingkungan ITS.
==================================================================================================================================
Role-Based Access Control (RBAC) is a framework that manages access rights using the concept of roles to group specific permissions. ITS implements RBAC through the myITS Security Management system to manage access rights for applications integrated into its Single Sign-On (SSO). However, the system, which is still based on the Create, Read, Update, and Delete (CRUD) paradigm, faces limitations in meeting the needs of applications that use Domain-Driven Design (DDD), particularly in managing access at the feature or endpoint level. This final project aims to redesign the myITS Security Management system with an RBAC approach based on the DDD paradigm, enabling independent access management for each application and detailed permission settings at the feature level. This final project also proposes a migration strategy from the legacy system to the new system without disrupting the operations of applications that are already integrated with the existing system. The proposed solution is expected to enhance the flexibility of access management, data security, and system efficiency within the ITS environment.
| Item Type: | Thesis (Other) |
|---|---|
| Uncontrolled Keywords: | RBAC, myITS Security Management, Single Sign-On, Domain-Driven Design, Migrasi Sistem, RBAC, myITS Security Management, Single Sign-On, Domain-Driven Design, System Migration |
| Subjects: | T Technology > T Technology (General) > T58.5 Information technology. IT--Auditing T Technology > T Technology (General) > T58.6 Management information systems T Technology > T Technology (General) > T58.64 Information resources management |
| Divisions: | Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Informatics Engineering > 55201-(S1) Undergraduate Thesis |
| Depositing User: | Muhamad Dafian Zakiakhdan |
| Date Deposited: | 30 Jul 2025 05:48 |
| Last Modified: | 30 Jul 2025 05:48 |
| URI: | http://repository.its.ac.id/id/eprint/123357 |
Actions (login required)
 |
View Item |