DocumentCode
3227483
Title
Explanations and Relaxations for Policy Conflicts in Physical Access Control
Author
Turkmen, Fatih ; Foley, Simon ; O´Sullivan, Barry ; Fitzgerald, William ; Hadzic, Tarik ; Basagiannis, Stylianos ; Boubekeur, Menouer
Author_Institution
Cork Constraint Comput. Centre, Univ. Coll. Cork, Cork, Ireland
fYear
2013
fDate
4-6 Nov. 2013
Firstpage
330
Lastpage
336
Abstract
Physical access control policies define sets of rulesthat govern people´s access to physical resources such asrooms and buildings. While simple decision-precedence can be used to reconcile different rules that result in conflicting access decisions, the presence of rule conflicts and other rule anomalies can make it difficult for a policy-administrator to comprehend and effectively manage complex policies. In this paper we are concerned with discovering conflicts and computing relaxations of access policies in order to eliminate conflicting rule instances. We propose several SAT based encodings in which these rule conflicts and anomalies areexpressed as explanation style problems. Relaxation techniques are in turn used to eliminate these anomalies by recommending what rules have to be revoked or what permissions have to beremoved from which rules. Moreover, we discuss a relaxation strategy that preserves most of the access constraints of theoriginal policy. Finally we provide a preliminary performancestudy of our techniques. Our approach is applicable to access control policies in general.
Keywords
authorisation; SAT based encodings; physical access control policies; simple decision-precedence; Authorization; Context; Educational institutions; Encoding; Organizations; Access Control; Policy; Relaxations;
fLanguage
English
Publisher
ieee
Conference_Titel
Tools with Artificial Intelligence (ICTAI), 2013 IEEE 25th International Conference on
Conference_Location
Herndon, VA
ISSN
1082-3409
Print_ISBN
978-1-4799-2971-9
Type
conf
DOI
10.1109/ICTAI.2013.57
Filename
6735268
Link To Document