Evaluating the Acquisition and Operation of Information Systems

Total Page:16

File Type:pdf, Size:1020Kb

Evaluating the Acquisition and Operation of Information Systems United States General Accounting Office Information Management and GAO Technology Division July lYS6 Evaluating the Acquisition and Operation of Information Systems Technical Guideline 2 Preface The federal government is becoming increasin ly dependent on information technology to meet its mission an cf program goals, presentin new challenges for the audit community. Collective 7 y, the government is the single largest user of information technology in the world and spends billions of dollars annually on its information resources--hardware, software, data, and people. This growing reliance on information technology emphasizes the need to economically acquire, develop, operate, and maintain information resources to effectively and efficiently achieve a ency mission and objectives. The Information Management and f ethnology Division (IMTEC) is the General Accountmg Office’s (GAO) focal point for evaluating how well the government manages its substantial investment in information resources. This guide provides GAO and IMTEC staff, as well as other interested officials in the federal audit community, with a logical framework for evaluating government agencies’ ac uisition and operation of computer-based information systems. i!t is structured around a matrix that outlines two broad information system life cycle phases--acquisition/development and operation/ maintenance--as they relate to five basic ob ectives, As described in the guide, agencies should achieve the fo1 lowing objectives in acquiring and operating their information systems: l Ensure system effectiveness. l Promote system economy and efficiency. l Protect data integrity. l Safeguard information resources. l Comply with laws and regulations. The guide also provides general criteria for evaluating agencies’ performance in achieving these objectives by hi hlightin key practices that should occur during the system li I?e cycle. l! he appendix is a convenient reference to the most si ificant laws, regulations, and standards that affect the federa $ information processing environment. This guide supplements and does not replace any other GAO policies or procedures. It may be updated as necessary. Page 1 Evaluating the Acquisition and Operation of Information Systems Preface I hope that IMTEX staff and other users of this guide will find the framework resented here beneficial in performing their work. It should heP p us meet the audit challenge of ensunng that federal policies and procedures foster good information management, and that agencies maximize the return on their information technology investment. &PDirector, &formation Management and Technology Division . Page a Evaluating the Acquisition and Oparath of Information Systems Contents Preface Chapter 1 Role of the Guide in Organization and Content of the Guide Information System Using the Guide Evaluations - Chapter 2 Information System Definition Underlying Concepts Information System Life Cycle The Five Basic Objectives - Relationship Between the Life Cycle and the Five Basic Ob’ectives Agency Practices to A thieve the Five Basic Objectives Chapter 3 16 Environmental Practices La Foundation for 16 System Acquisition/ Meeting the Five Basic 0 ii jectives Development- Strategic ADP Management Practices 16 Practices to Meet the Tactical ADP Mana ement Practices Five Basic Objectives Specific Practices Aid in s valuating Acquisition/ :i Development Pro’ects Requirements iI efinition 20 Analysis of Alternatives Acquisition Process ;oo Software Engineerin 21 Environmental and Speci fBlc Practices Help 21 Achieve the Five Basic Objectives Ensuring System Effectiveness 21 Promoting Economy and Efficiency Protectin Data Integrity i: Safeguar d ing Information Resources 25 Complying with Laws and Regulations 25 Page 3 Evaluating the Acquisition and Operation of Information Systams Contents Chapter 4 System Operation/ Environmental Practices Help Agencies Achieve the Five Basic Objectives Maintenance- Data Center Operations Practices to Meet the Ca acity Management Five Basic Objectives Te Pecommunications Management Data Center Security Spe&fi;i&ces Focus on Individual Application Application Control Framework Environmental and Specific Practices Help :: Achieve the Five Basic Objectives Ensuring S stem Effectiveness Promoting H conomy and Efficiency Protectin Data Integrity Safeguar f ing Information Resources Complying with Laws and Regulations Chapter 5 Crosswalk to Linkage Between the Guide and GAO’s Job 2 Management Framework Additional Guidance Linkage Between the Guide and Available Criteria 41 A pendix 42 T/fe Compliance Laws, Regulations, and Directives OMB Circulars ii Objective--Key Laws, GAO Standards 46 Regulations, and Federal Information Processing Standards 48 Standards Publications VIPS PUBS) Tables Tab .e 2.1: Ke Activities in the Information 10 )ystem Li tye Cycle Tad .e 2.2: Relationshi Between the Five Basic 13 Objectives and the % formation System Life Cycle Tad .e I. 1: Key Laws, Regulations, and Directives- 44 1telationship to the Other Information lystem Objectives Tab .e 1.2: Key OMB Circulars and GAO Standards-- 47 1lelationship to the Other Information lystem Objectives Tai .e 1.3: Key FIPS PUBS--Relationship to the 51 4kher Information System Objectives Page 4 Evaluating the Acquisition and Operation of Information Systems Contents Figures Figure 2.1: Structure of the Guide--Chapters 3 and 4 Show Relationship Between Key Practices and the Five Basic Objectives Abbreviations ADP automatic data recessing DOD De artment of 8 efense PIPS PUBS Fe Bera1 Information Processing Standards Publications FIRMR Federal Information Resources Management Regulation GAO General Accounting Off&e IMTEC Information Management and Technology Division NSDD National Security Decision Directive OMB Office of Management and Budget Page 5 Evaluating tha Acquisition and Operation of Information Systems Chapter 1 Role of the Guide In Information System Evaluations As the focal point for the General Accounting Offrice’s (GAO) data recessing and telecommunications work, the Information K anagement and Technolo Division (IMTEX) evaluates policy, management, and teeBK nology issues on an agency-specific and a governmentwide basis. Auditing system acquisitions and operations at individual agencies consumes the bulk of IMTEC’s staff resources and lays the foundation for identifyin and assessing governmentwide issues and problems. I M#E C’s primar goal in performing this work is to determine if a encies are ma %ing sound managerial, technical, and economica f decisions in acquiring and using automated systems. To help achieve our goal, this guide provides a logical framework for evaluating system ac uisitions and operations. More specifically, it is intende %to l direct and focus IMTEX’s agency-specific work; l guide staff in defining, planning, and communicating audit objectives; and l provide a consistent structure for developing governmentwide issues. While the guide does not describe in detail the exact tasks required to perform an audit, it does provide arameters for our work by (1) defining objectives agencies shouP d achieve in acquiring and operating computer-based systems and (2) highlighting some key criteria for measuring agency performance in meeting the objectives. Organization and The chapters of the guide follow a logical sequence--from broad Content of the Guide concepts and management issues to more specific system life cycle phases and the respective agency practices that should be in place. Following this introductory chapter, chapter 2 describes some fundamental concepts that form the backbone of this guide: our definition of a computer-based system and its life c cle; a description of the five basic objectives that agencies si!i ould meet in acquiring and operating these systems; and a definition of the key categories of practices, or internal control techniques, that are important to achieving the five objectives. The remaining chapters show the relationship between the life cycle phases and each of the five objectives, highlighting key Page 6 Evaluating the Acquisition and Operation of Information Syster C hapkr 1 Role of the Guide in Information System Evaluations practices that should be performed. Chapter 3 provides an overview of the system acquisition/development life cycle phase and the practices needed to meet each of the five basic objectives, while chapter 4 provides similar information on the system operation/maintenance life cycle phase. The final chapter links the guide to GAO’s job planning and management process and to available criteria. Using the Guide We intend for this guide to be used primaril by GAO staff responsible for auditing data recessing an B telecommunications issues at specific agencies an cracross the government. However, it may also prove useful to individuals outside GAO, including a ency internal audit staff, inspectors general staff, and ef ectronic data processing managers and personnel involved in developing and operating information systems. The guide provides broad parameters for determining whether computer-based systems meet or will meet five basic objectives. It familiarizes auditors with the various phases of the life c cle process and allows flexibility for zeroing m on the ap licab r e life cycle phase of the system under review. This guide sft ould be particularly useful early in the audit process, in establishing audit objectives, identifying potential problem areas, and determining the scope and extent of more detailed audit work. Pam 7 Evaluating the
Recommended publications
  • Use of Bioinformatics Resources and Tools by Users of Bioinformatics Centers in India Meera Yadav University of Delhi, [email protected]
    University of Nebraska - Lincoln DigitalCommons@University of Nebraska - Lincoln Library Philosophy and Practice (e-journal) Libraries at University of Nebraska-Lincoln 2015 Use of Bioinformatics Resources and Tools by Users of Bioinformatics Centers in India meera yadav University of Delhi, [email protected] Manlunching Tawmbing Saha Institute of Nuclear Physisc, [email protected] Follow this and additional works at: http://digitalcommons.unl.edu/libphilprac Part of the Library and Information Science Commons yadav, meera and Tawmbing, Manlunching, "Use of Bioinformatics Resources and Tools by Users of Bioinformatics Centers in India" (2015). Library Philosophy and Practice (e-journal). 1254. http://digitalcommons.unl.edu/libphilprac/1254 Use of Bioinformatics Resources and Tools by Users of Bioinformatics Centers in India Dr Meera, Manlunching Department of Library and Information Science, University of Delhi, India [email protected], [email protected] Abstract Information plays a vital role in Bioinformatics to achieve the existing Bioinformatics information technologies. Librarians have to identify the information needs, uses and problems faced to meet the needs and requirements of the Bioinformatics users. The paper analyses the response of 315 Bioinformatics users of 15 Bioinformatics centers in India. The papers analyze the data with respect to use of different Bioinformatics databases and tools used by scholars and scientists, areas of major research in Bioinformatics, Major research project, thrust areas of research and use of different resources by the user. The study identifies the various Bioinformatics services and resources used by the Bioinformatics researchers. Keywords: Informaion services, Users, Inforamtion needs, Bioinformatics resources 1. Introduction ‘Needs’ refer to lack of self-sufficiency and also represent gaps in the present knowledge of the users.
    [Show full text]
  • Establishing the Basis for a CIS (Computer Information Systems) Undergraduate Program: on Seeking the Body of Knowledge
    Information Systems Education Journal (ISEDJ) 13 (5) ISSN: 1545-679X September 2015 Establishing the Basis for a CIS (Computer Information Systems) Undergraduate Program: On Seeking the Body of Knowledge Herbert E. Longenecker, Jr. [email protected] University of South Alabama Mobile, AL 36688, USA Jeffry Babb [email protected] West Texas A&M University Canyon, TX 79016, USA Leslie J. Waguespack [email protected] Bentley University Waltham, Massachusetts 02452, USA Thomas N. Janicki [email protected] University of North Carolina Wilmington Wilmington, NC 28403, USA David Feinstein [email protected] University of South Alabama Mobile, AL 36688, USA Abstract The evolution of computing education spans a spectrum from computer science (CS) grounded in the theory of computing, to information systems (IS), grounded in the organizational application of data processing. This paper reports on a project focusing on a particular slice of that spectrum commonly labeled as computer information systems (CIS) and reflected in undergraduate academic programs designed to prepare graduates for professions as software developers building systems in government, commercial and not-for-profit enterprises. These programs with varying titles number in the hundreds. This project is an effort to determine if a common knowledge footprint characterizes CIS. If so, an eventual goal would be to describe the proportions of those essential knowledge components and propose guidelines specifically for effective undergraduate CIS curricula. Professional computing societies (ACM, IEEE, AITP (formerly DPMA), etc.) over the past fifty years have sponsored curriculum guidelines for various slices of education that in aggregate offer a compendium of knowledge areas in ©2015 EDSIG (Education Special Interest Group of the AITP) Page 37 www.aitp-edsig.org /www.isedj.org Information Systems Education Journal (ISEDJ) 13 (5) ISSN: 1545-679X September 2015 computing.
    [Show full text]
  • Information Systems Foundations Theory, Representation and Reality
    Information Systems Foundations Theory, Representation and Reality Information Systems Foundations Theory, Representation and Reality Dennis N. Hart and Shirley D. Gregor (Editors) Workshop Chair Shirley D. Gregor ANU Program Chairs Dennis N. Hart ANU Shirley D. Gregor ANU Program Committee Bob Colomb University of Queensland Walter Fernandez ANU Steven Fraser ANU Sigi Goode ANU Peter Green University of Queensland Robert Johnston University of Melbourne Sumit Lodhia ANU Mike Metcalfe University of South Australia Graham Pervan Curtin University of Technology Michael Rosemann Queensland University of Technology Graeme Shanks University of Melbourne Tim Turner Australian Defence Force Academy Leoni Warne Defence Science and Technology Organisation David Wilson University of Technology, Sydney Published by ANU E Press The Australian National University Canberra ACT 0200, Australia Email: [email protected] This title is also available online at: http://epress.anu.edu.au/info_systems02_citation.html National Library of Australia Cataloguing-in-Publication entry Information systems foundations : theory, representation and reality Bibliography. ISBN 9781921313134 (pbk.) ISBN 9781921313141 (online) 1. Management information systems–Congresses. 2. Information resources management–Congresses. 658.4038 All rights reserved. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying or otherwise, without the prior permission of the publisher. Cover design by Brendon McKinley with logo by Michael Gregor Authors’ photographs on back cover: ANU Photography Printed by University Printing Services, ANU This edition © 2007 ANU E Press Table of Contents Preface vii The Papers ix Theory Designing for Mutability in Information Systems Artifacts, Shirley Gregor and Juhani Iivari 3 The Eect of the Application Domain in IS Problem Solving: A Theoretical Analysis, Iris Vessey 25 Towards a Unied Theory of Fit: Task, Technology and Individual, Michael J.
    [Show full text]
  • Information System Owner
    DOE CYBERSECURITY: CORE COMPETENCY TRAINING REQUIREMENTS Key Cybersecurity Role: Information System Owner Role Definition: The Information System Owner (also referred to as System Owner) is the individual responsible for the overall procurement, development, integration, modification, operation, maintenance, and retirement of an information system. The System Owner is a key contributor in developing system design specifications to ensure the security and user operational needs are documented, tested, and implemented. Competency Area: Data Security Functional Requirement: Design Competency Definition: Refers to the application of the principles, policies, and procedures necessary to ensure the confidentiality, integrity, availability, and privacy of data in all forms of media (i.e., electronic and hardcopy) throughout the data life cycle. Behavioral Outcome: The System Owner will understand the policies and procedures required to protect all categories of information as well as have a working knowledge of data access controls required to ensure the confidentiality, integrity, and availability of information. He/she will apply this knowledge during all phases of the System Development Life Cycle (SDLC). Training concepts to be addressed at a minimum: Identify and document the appropriate level of protection for data, including use of encryption. Specify data and information classification, sensitivity, and need-to-know requirements by information type on a system in terms of its confidentiality, integrity, and availability. Utilize DOE M 205.1-5 to determine the information impacts for unclassified information and DOE M 205.1-4 to determine the Consequence of Loss for classified information. Create authentication and authorization system for users to gain access to data based on assigned privileges and permissions.
    [Show full text]
  • Information System Development Using Augmented Reality Tools*
    Information system development using augmented reality tools* Grigorev Rostislav Aleksandrovich Valijanov Bahrom Adhamdzon-ugli Kazan Federal University Kazan Federal University Kazan, Russia Kazan, Russia [email protected] [email protected] Medvedeva Olga Anatolievna Mustafina Svetlana Anatol’evna Kazan Federal University Bashkir State University Kazan, Russia Ufa, Russia [email protected] [email protected] Abstract This work is devoted to the issues of visualization and information processing, in particular, to improving the visualization of 3D objects using augmented reality technology. The concept of augmented reality offers a more advanced user interface for visualization due to a combination of natural ways to control the change of angle of an object and visualization in a real context. In the process of performing the work, computer graphics, algorithms, and modeling methods were used. The experimental part of the work was carried out using a set of development tools for tracking Vuforia and Unity development tools. Introduction Augmented reality (AR) is an interactive experience of a real-world environment where the objects that reside in the real world are enhanced by computer-generated perceptual information, sometimes across multiple sensory modalities, including visual, auditory, haptic, somatosensory and olfactory. AR can be defined as a system that fulfills three basic features: a combination of real and virtual worlds, real-time interaction, and accurate 3D registration of virtual and real objects. The overlaid sensory information can be constructive (i.e. additive to the natural environment), or destructive (i.e. masking of the natural environment). This experience is seamlessly interwoven with the physical world such that it is perceived as an immersive aspect of the real environment.
    [Show full text]
  • Introduction to Bioinformatics (Elective) – SBB1609
    SCHOOL OF BIO AND CHEMICAL ENGINEERING DEPARTMENT OF BIOTECHNOLOGY Unit 1 – Introduction to Bioinformatics (Elective) – SBB1609 1 I HISTORY OF BIOINFORMATICS Bioinformatics is an interdisciplinary field that develops methods and software tools for understanding biologicaldata. As an interdisciplinary field of science, bioinformatics combines computer science, statistics, mathematics, and engineering to analyze and interpret biological data. Bioinformatics has been used for in silico analyses of biological queries using mathematical and statistical techniques. Bioinformatics derives knowledge from computer analysis of biological data. These can consist of the information stored in the genetic code, but also experimental results from various sources, patient statistics, and scientific literature. Research in bioinformatics includes method development for storage, retrieval, and analysis of the data. Bioinformatics is a rapidly developing branch of biology and is highly interdisciplinary, using techniques and concepts from informatics, statistics, mathematics, chemistry, biochemistry, physics, and linguistics. It has many practical applications in different areas of biology and medicine. Bioinformatics: Research, development, or application of computational tools and approaches for expanding the use of biological, medical, behavioral or health data, including those to acquire, store, organize, archive, analyze, or visualize such data. Computational Biology: The development and application of data-analytical and theoretical methods, mathematical modeling and computational simulation techniques to the study of biological, behavioral, and social systems. "Classical" bioinformatics: "The mathematical, statistical and computing methods that aim to solve biological problems using DNA and amino acid sequences and related information.” The National Center for Biotechnology Information (NCBI 2001) defines bioinformatics as: "Bioinformatics is the field of science in which biology, computer science, and information technology merge into a single discipline.
    [Show full text]
  • Bioinformatics: Benefits to Mankind
    International Journal of PharmTech Research CODEN (USA): IJPRIF, ISSN: 0974-4304 Vol.9, No.4, pp 242-248, 2016 Bioinformatics: Benefits to Mankind Himanshu Singh* Dept. of Biotechnology, Lovely Professional University, Phagwara, India Abstract: The storage and analysis of biological data using certain algorithms and computer softwares is called bioinformatics. The applications that bioinformatics offer to the civilized world are more than just being a researcher's tool for structural and functional analysis. Development and implementation of computational algorithms and software tools facilitate an understanding of the biological processes with the goal to serve primarily agriculture and pharmaceutical sectors. In this paper, we highlight the role of bioinformatics in health care, drug discovery, forensic analysis, crop improvement, food analysis and biodiversity management. Some ethical issues related to bioinformatics research are also covered. Keywords : Bioinformatics, Computational Biology, Drug Discovery, Chemiinformatics. Introduction Bioinformatics is defined as “a scientific discipline that encompasses all aspects of biological information acquisition, processing, storage, distribution, analysis, and interpretation that combines the tools and techniques of mathematics, computer science, and biology with the aim of understanding the biological significance of a variety of data” [1]. Bioinformatics-tools include any products that store, organize, evaluate, integrate, analyse, and/or distribute biological data [2]. Bioinformatics
    [Show full text]
  • Data Management in Systems Biology I
    Data management in systems biology I – Overview and bibliography Gerhard Mayer, University of Stuttgart, Institute of Biochemical Engineering (IBVT), Allmandring 31, D-70569 Stuttgart Abstract Large systems biology projects can encompass several workgroups often located in different countries. An overview about existing data standards in systems biology and the management, storage, exchange and integration of the generated data in large distributed research projects is given, the pros and cons of the different approaches are illustrated from a practical point of view, the existing software – open source as well as commercial - and the relevant literature is extensively overviewed, so that the reader should be enabled to decide which data management approach is the best suited for his special needs. An emphasis is laid on the use of workflow systems and of TAB-based formats. The data in this format can be viewed and edited easily using spreadsheet programs which are familiar to the working experimental biologists. The use of workflows for the standardized access to data in either own or publicly available databanks and the standardization of operation procedures is presented. The use of ontologies and semantic web technologies for data management will be discussed in a further paper. Keywords: MIBBI; data standards; data management; data integration; databases; TAB-based formats; workflows; Open Data INTRODUCTION the foundation of a new journal about biological The large amount of data produced by biological databases [24], the foundation of the ISB research projects grows at a fast rate. The 2009 (International Society for Biocuration) and special edition of the annual Nucleic Acids Research conferences like DILS (Data Integration in the Life database issue mentions 1170 databases [1]; alone Sciences) [25].
    [Show full text]
  • Management Information Systems: an Overview
    EDUSAT LEARNING RESOURCE MATERIAL ON MMMAAANNNAAAGGGEEEMMMEEENNNTTT IIINNNFFFOOORRRMMMAAATTTIIIOOONNN SSSYYYSSSTTTEEEMMMSSS 5th Semester Computer Science Engineering According to S. C. T. E &V. T. Syllabus for Diploma Students Prepared By:- SRI RAMESH CHANDRA SAHOO, Sr. Lect. CSE/IT U.C.P.ENGG.SCHOOL, BERHAMPUR SMT NAYANA PATEL, PTGF CSE/IT U.C.P.ENGG.SCHOOL, BERHAMPUR MISS SASMITA MISRA, PTGF CSE/IT U.C.P.ENGG.SCHOOL, BERHAMPUR Copy Right DTE&T, Odisha CONTENTS CHAPTER-1 ...................................................................................................................................................... 7 MANAGEMENT INFORMATION SYSTEMS: AN OVERVIEW ............................................................. 7 1.1. INTRODUCTION ...................................................................................................................... 7 1.2. MANAGEMENT INFORMATION SYSYEM ......................................................................... 7 1.2.1. Management ......................................................................................................................... 7 1.2.2. Information .......................................................................................................................... 8 1.2.3. System .................................................................................................................................. 9 1.3. DEFINITIONS OF MIS. ............................................................................................................ 9 1.4.
    [Show full text]
  • Introduction to E-Commerce Combining Business and Information Technology
    MARTIN KÜTZ INTRODUCTION TO E-COMMERCE COMBINING BUSINESS AND INFORMATION TECHNOLOGY 2 Introduction to E-Commerce: Combining Business and Information Technology 1st edition © 2016 Martin Kütz & bookboon.com ISBN 978-87-403-1520-2 Peer review by Prof. Dr. Michael Brusch, Fachbereich 6, Hochschule Anhalt and Prof. Dr. Corinna V. Lang, Fachbereich 2, Hochschule Anhalt 3 INTRODUCTION TO E-COMMERCE CONTENTS CONTENTS Table of abbreviations 7 1 Basics and definitions 15 1.1 The term “E-Commerce” 16 1.2 Business models related to E-Commerce 24 1.3 Technical and economic challenges 34 1.4 Exercises 35 2 Frameworks and architectures 37 2.1 Actors and stakeholders 37 360° 2.2 Fundamental sales process 39 2.3 Technological elements 44 2.4 Exercises 360° 61 thinking. thinking. 360° thinking . 360° thinking. Discover the truth at www.deloitte.ca/careers Discover the truth at www.deloitte.ca/careers © Deloitte & Touche LLP and affiliated entities. Discover the truth at www.deloitte.ca/careers © Deloitte & Touche LLP and affiliated entities. © Deloitte & Touche LLP and affiliated entities. Discover the truth at www.deloitte.ca/careers 4 © Deloitte & Touche LLP and affiliated entities. INTRODUCTION TO E-COMMERCE CONTENTS 3 B2C business 62 3.1 The process model and its variants 62 3.2 The pricing challenge 77 3.3 The fulfilment challenge 79 3.4 The payment challenge 80 3.5 B2C-business and CRM 80 3.6 B2C software systems 81 3.7 Exercises 85 4 B2B business 86 4.1 The process model and its variants 86 4.2 B2B software systems 98 4.3 Exercises 106 5 Impact
    [Show full text]
  • Middleware Integration with Existing Applications: Current Design Issues, with a Focus on Mailing Lists
    Middleware Integration with Existing Applications: Current Design Issues, with a Focus on Mailing Lists draft-internet2-mace-mlist-middleware-integration-issues-03.html Authors: Jill Gemmill, John-Paul Robinson University of Alabama at Birmingham Copyright © 2005 by Internet2 and/or the respective authors Comments to: mace-mlist-contact AT internet2 DOT edu Middleware Integration with Existing Applications: Current Design Issues, with a Focus on Mailing Lists This material is in part based upon work supported by the National Science Foundation under Grant No. ANI-0330543. "NMI Enabled Open Source Collaboration Tools for Virtual Organizations". Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation. Additional support was provided by the University of Alabama at Birmingham and Internet2. Table of Contents Abstract Introduction 1. What Is a Mailing List System? 2. What is Middleware? 3. Application Use Cases 4. Modeling the Mailing List / Middleware Interaction 5. Middleware API for Applications: A Preliminary Description 6. Application Design Consideration and System Requirements 7. System Authorization Models 8. Case Study: Sympa, a middleware enabled list management application 9. Additional Thoughts - Desirable Features for List Management Applications 10. Acknowledgements 11. Glossary of Terms Abstract Recently, portals have been used to provide a user-friendly interface to a set of grid services and related applications such that user identity is shared across those applications. NMI components such as web initial sign on and Shibboleth provide another way to assemble a suite of applications that share identity and attributes.
    [Show full text]
  • Assessing Information System Design Theory in Perspective: How Useful Was Our 1992 Initial Rendition?
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by AIS Electronic Library (AISeL) JITTA JOURNAL OF INFORMATION TECHNOLOGY THEORY AND APPLICATION ASSESSING INFORMATION SYSTEM DESIGN THEORY IN PERSPECTIVE: HOW USEFUL WAS OUR 1992 INITIAL RENDITION? JOSEPH G. WALLS, The University of Michigan Ross School of Business, 711 Tappan, Ann Arbor, MI 48109-1234, USA, Tel: 734 763 4610, E-mail: [email protected] GEORGE R. WIDMEYER, New Jersey Institute of Technology College of Computing Sciences, GITC 4400, Newark, NJ 07102, USA, Tel: 973 596 5897, E-mail: [email protected] OMAR A. EL SAWY, University of Southern California Marshall School of Business, 3670 Trousdale Parkway, Los Angeles, California 90089-1421, USA, Tel: 213 740 4837, E-mail: [email protected] ABSTRACT More than a decade has passed since the publication of the first article on building information systems design theories (ISDT) that appeared in Information Systems Research (Walls, Widmeyer, and El Sawy, 1992). Using the context of designing vigilant executive information systems, it articulated how to construct and test an ISDT that could prescriptively guide the design of a particular class of information system. The paper argued that successful construction of ISDTs would create an endogenous base for theory in the IS discipline, and could be used by scholars to prescribe design products and processes for different classes of information systems as they emerged. This paper reviews ISDT and assesses how it has been used by IS scholars since that 1992 publication. It attempts to determine how useful the Walls et.
    [Show full text]