An autonomous model to enforce security policies based on user´s behavior

Author

Ghazinour, Kambiz ; Ghayoumi, Mehdi

Author_Institution

Dept. of Comput. Sci., Kent State Univ., Kent, OH, USA

fYear

2015

fDate

June 28 2015-July 1 2015

Firstpage

95

Lastpage

99

Abstract

To protect user´s information, computer systems utilize access control models. These models are supported by a set of policies defined by security administrators in the environment where the organization is active. In previous studies it has been shown that building a user interface that dynamically changes with the security policies defined for each user is a cumbersome task. This work is a further expansion of an improved dynamic model that adjusts users´ security policies based on the level of trust that they hold. We use machine learning beside the trust manager component that helps the system to adapt itself, learn from the user´s behavior and recognize access patterns based on the similar access requests and not only limit the illegitimate access, but also predict and prevent potential malicious and questionable accesses.

Keywords

learning (artificial intelligence); trusted computing; user interfaces; access control models; access requests; autonomous model; security policy; trust level; trust manager component; user behavior; user information protection; user interface; Access control; Business; Computational modeling; Databases; History; User interfaces; Access Policies; Database; Dynamic Model; Machine Learning; Security Policies; Trust Model;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer and Information Science (ICIS), 2015 IEEE/ACIS 14th International Conference on

Conference_Location

Las Vegas, NV

Type

conf

DOI

10.1109/ICIS.2015.7166576

Filename

7166576