• DocumentCode
    1833961
  • Title

    Deriving Current State RBAC Models from Event Logs

  • Author

    Baumgrass, Anne

  • Author_Institution
    New Media Lab., Vienna Univ. of Econ. & Bus. (WU Vienna), Vienna, Austria
  • fYear
    2011
  • fDate
    22-26 Aug. 2011
  • Firstpage
    667
  • Lastpage
    672
  • Abstract
    Process-aware information systems are used to execute business processes to reach the operational goals of an organization. In this context, access control policies are defined to govern the choice in behavior of such systems. In a role engineering process these access control policies can be defined and customized. This paper introduces a new automated approach to derive current state access control policies from event logs extracted from process-aware information systems. For this purpose, the two standard formats for event logs called MXML and XES are used. It is demonstrated how this derivation can ease certain steps in the scenario-driven role engineering process, that are otherwise time-consuming and can get tedious if conducted manually.
  • Keywords
    authorisation; business data processing; information systems; RBAC model; access control policy; business process; event logs; process-aware information system; role engineering process; Access control; Business; Credit cards; Data mining; Information systems; Process control; XML; Process-aware Information Systems; RBAC; Role Engineering;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security (ARES), 2011 Sixth International Conference on
  • Conference_Location
    Vienna
  • Print_ISBN
    978-1-4577-0979-1
  • Electronic_ISBN
    978-0-7695-4485-4
  • Type

    conf

  • DOI
    10.1109/ARES.2011.104
  • Filename
    6046043
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1833961