Title :
Attribute-Based Mining Process for the Organization-Based Access Control Model
Author :
Wazan, A.S. ; Blanc, Gregory ; Debar, Herve ; Garcia-Alfaro, Joaquin
Author_Institution :
Inst. Mines-Telecom, Telecom SudParis, Evry, France
Abstract :
Since the late 60´s, different security access control models have been proposed. Their rationale is to conceive high level abstract concepts that permit to manage the security policies of organizations efficiently. However, enforcing these models is not a straightforward task, especially when they do not consider the reality of organizations which may have ad-hoc security policies already deployed. Another issue is the vagueness of their abstract concepts. We propose to bridge the gap between the theory of access control models and the reality of organizations by defining an attribute-based mining process that deduce the abstract concepts starting from the attribute level. Additionaly, the attributes allow us to semantically enrich the obtained results. We have selected the Organization-Based Access Control (OrBAC) model as the abstraction objective of our study.
Keywords :
authorisation; data mining; OrBAC model; abstract concepts; abstraction objective; attribute-based mining process; organization-based access control model; security access control models; security policies; Abstracts; Access control; Concrete; Context; Organizations; Permission; Access Control; Policy Management; Role Mining; Security;
Conference_Titel :
Trust, Security and Privacy in Computing and Communications (TrustCom), 2013 12th IEEE International Conference on
Conference_Location :
Melbourne, VIC
DOI :
10.1109/TrustCom.2013.53
