Policy Adaptation in Hierarchical Attribute-based Access Control Systems

被引：6

作者：

Das, Saptarshi ^{[1
]}

Sural, Shamik ^{[1
]}

Vaidya, Jaideep ^{[2
,3
]}

Atluri, Vijayalakshmi ^{[2
,3
]}

机构：

[1] Indian Inst Technol Kharagpur, Dept Comp Sci & Engn, Kharagpur 721302, W Bengal, India

[2] Rutgers Business Sch, Newark, NJ USA

[3] Rutgers State Univ, MSIS Dept, 1 Washington Pk, Newark, NJ 07102 USA

来源：

ACM TRANSACTIONS ON INTERNET TECHNOLOGY | 2019年 / 19卷 / 03期

基金：

美国国家卫生研究院; 美国国家科学基金会;

关键词：

ABAC policy; policy adaptation; attribute value hierarchy;

D O I：

10.1145/3323233

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

In Attribute-Based Access Control (ABAC), access to resources is given based on the attributes of subjects, objects, and environment. There is an imminent need for the development of efficient algorithms that enable migration to ABAC. However, existing policy mining approaches do not consider possible adaptation to the policy of a similar organization. In this article, we address the problem of automatically determining an optimal assignment of attribute values to subjects for enabling the desired accesses to be granted while minimizing the number of ABAC rules used by each subject or other appropriate metrics. We show the problem to be NP-Complete and propose a heuristic solution.

引用

页数：24

共 50 条

[1] Attribute-Based Hierarchical Access Control With Extendable Policy
Xiao, Meiyan
Li, Hongbo
Huang, Qiong
Yu, Shui
Susilo, Willy
[J]. IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2022, 17 : 1868 - 1883
[2] Policy Adaptation in Attribute-Based Access Control for Inter-organizational Collaboration
Das, Saptarshi
Sural, Sharnik
Vaidya, Jaideep
Atluri, Vijayalakshmi
[J]. 2017 IEEE 3RD INTERNATIONAL CONFERENCE ON COLLABORATION AND INTERNET COMPUTING (CIC), 2017, : 136 - 145
[3] Attribute Expressions, Policy Tables and Attribute-Based Access Control
Crampton, Jason
Williams, Conrad
[J]. PROCEEDINGS OF THE 22ND ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT'17), 2017, : 79 - 90
[4] Toward Attribute-Based Access Control Policy in Industrial Networked Systems
Cheminod, Manuel
Durante, Luca
Valenza, Fulvio
Valenzano, Adriano
[J]. 2018 14TH IEEE INTERNATIONAL WORKSHOP ON FACTORY COMMUNICATION SYSTEMS (WFCS 2018), 2018,
[5] On the Feasibility of Attribute-Based Access Control Policy Mining
Chakraborty, Shuvra
Sandhu, Ravi
Krishnan, Ram
[J]. 2019 IEEE 20TH INTERNATIONAL CONFERENCE ON INFORMATION REUSE AND INTEGRATION FOR DATA SCIENCE (IRI 2019), 2019, : 245 - 252
[6] Attribute-based lightweight reconfigurable access control policy
Xie, Rongna
Li, Hui
Shi, Guozhen
Guo, Yunchuan
[J]. Tongxin Xuebao/Journal on Communications, 2020, 41 (02): : 112 - 122
[7] Policy Extraction and Optimization with Access Logs for Attribute-based Access Control
Sun, Wei
Li, Long
Hu, Ying
[J]. Journal of Network Intelligence, 2023, 8 (03): : 932 - 947
[8] Attribute-Based Access Control
Hu, Vincent C.
Kuhn, D. Richard
Ferraiolo, David F.
[J]. COMPUTER, 2015, 48 (02) : 85 - 88
[9] Deconflicting policies in attribute-based access control systems
Yahiaoui, Mohamed
Zinedine, Ahmed
Harti, Mostafa
[J]. 2018 IEEE 5TH INTERNATIONAL CONGRESS ON INFORMATION SCIENCE AND TECHNOLOGY (IEEE CIST'18), 2018, : 130 - 136
[10] Attribute-Based Access Control of Collaborative design systems
Fan, Tongrang
Guo, Hongyong
Li, Yanjing
[J]. MANUFACTURING SYSTEMS AND INDUSTRY APPLICATIONS, 2011, 267 : 80 - 85

← 1 2 3 4 5 →