Shaikh, Riaz Ahmed ORCID: https://orcid.org/0000-0001-6666-0253, Adi, Kamel, Logrippo, Luigi and Mankovski, Serge (2010) Inconsistency detection method for access control policies. In: 2010 6th International Conference on Information Assurance and Security, IAS 2010. 2010 6th International Conference on Information Assurance and Security, IAS 2010 . UNSPECIFIED, USA, pp. 204-209. ISBN 9781424474080
Full text not available from this repository. (Request a copy)Abstract
In enterprise environments, the task of assigning access control rights to subjects for resources is not trivial. Because of their complexity, distribution and size, access control policies can contain anomalies such as inconsistencies, which can result in security vulnerabilities. A set of access control policies is inconsistent when, for specific situations different incompatible policies can apply. Many researchers have tried to address the problem of inconsistency using methods based on formal logic. However, this approach is difficult to implement and inefficient for large policy sets. Therefore, in this paper, we propose a simple, efficient and practical solution for detecting inconsistencies in access control policies with the help of a modified C4.5 data classification algorithm.
Item Type: | Book Section |
---|---|
Uncontrolled Keywords: | access control,data classification,decision tree,inconsistency,policy validation,information systems ,/dk/atira/pure/subjectarea/asjc/1700/1710 |
Faculty \ School: | Faculty of Science > School of Computing Sciences |
UEA Research Groups: | Faculty of Science > Research Groups > Cyber Security Privacy and Trust Laboratory |
Related URLs: | |
Depositing User: | LivePure Connector |
Date Deposited: | 16 Aug 2022 15:31 |
Last Modified: | 07 May 2023 06:31 |
URI: | https://ueaeprints.uea.ac.uk/id/eprint/87321 |
DOI: | 10.1109/ISIAS.2010.5604062 |
Actions (login required)
View Item |