A tool for access control policy validation

Aqib, Muhammad and Shaikh, Riaz Ahmed ORCID: https://orcid.org/0000-0001-6666-0253 (2018) A tool for access control policy validation. Journal of Internet Technology, 19 (1). pp. 157-166. ISSN 1607-9264

Full text not available from this repository. (Request a copy)

Abstract

Inconsistency in access control policies exists when at least two rules present in the policy set lead to the contradictory decisions. It makes difficult for the system to decide which rule is applicable to the current scenario and hence make the system vulnerable to the unauthorized use. Various inconsistency detection methods have been proposed by researchers. However, those suffered from various limitations e.g., inefficient handling of numeric attributes, Boolean expressions etc. In this article, we propose a new algorithm that detects the inconsistencies in the policies using decision trees. For a proof of concept, we have developed a software tool that proves its effectiveness. Also, complexity analysis and qualitative comparison of the proposed algorithm is presented in the paper.

Item Type: Article
Additional Information: Publisher Copyright: © 2018 Taiwan Academic Network Management Committee. All rights reserved.
Uncontrolled Keywords: access control,inconsistency,policy validation,security,xml,software,computer networks and communications ,/dk/atira/pure/subjectarea/asjc/1700/1712
Faculty \ School: Faculty of Science > School of Computing Sciences
UEA Research Groups: Faculty of Science > Research Groups > Cyber Security Privacy and Trust Laboratory
Related URLs:
Depositing User: LivePure Connector
Date Deposited: 16 Aug 2022 15:31
Last Modified: 07 May 2023 06:30
URI: https://ueaeprints.uea.ac.uk/id/eprint/87325
DOI: 10.3966/160792642018011901015

Actions (login required)

View Item View Item