Attribute-Based Mining Process for the Organization-Based Access Control Model

Author

Wazan, A.S. ; Blanc, Gregory ; Debar, Herve ; Garcia-Alfaro, Joaquin

Author_Institution

Inst. Mines-Telecom, Telecom SudParis, Evry, France

fYear

2013

fDate

16-18 July 2013

Firstpage

421

Lastpage

430

Abstract

Since the late 60´s, different security access control models have been proposed. Their rationale is to conceive high level abstract concepts that permit to manage the security policies of organizations efficiently. However, enforcing these models is not a straightforward task, especially when they do not consider the reality of organizations which may have ad-hoc security policies already deployed. Another issue is the vagueness of their abstract concepts. We propose to bridge the gap between the theory of access control models and the reality of organizations by defining an attribute-based mining process that deduce the abstract concepts starting from the attribute level. Additionaly, the attributes allow us to semantically enrich the obtained results. We have selected the Organization-Based Access Control (OrBAC) model as the abstraction objective of our study.

Keywords

authorisation; data mining; OrBAC model; abstract concepts; abstraction objective; attribute-based mining process; organization-based access control model; security access control models; security policies; Abstracts; Access control; Concrete; Context; Organizations; Permission; Access Control; Policy Management; Role Mining; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Trust, Security and Privacy in Computing and Communications (TrustCom), 2013 12th IEEE International Conference on

Conference_Location

Melbourne, VIC

Type

conf

DOI

10.1109/TrustCom.2013.53

Filename

6680870