Suppr超能文献

基于层次属性的访问控制系统中的策略适配

Policy Adaptation in Hierarchical Attribute-Based Access Control Systems.

作者信息

DAS Saptarshi, Sural Shamik, Vaidya Jaideep, Atluri Vijayalakshmi

机构信息

Indian Institute of Technology Kharagpur, India.

Rutgers Business School, USA.

出版信息

ACM Trans Internet Technol. 2019 Nov;19(3). doi: 10.1145/3323233.

DOI:10.1145/3323233
PMID:31885522
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC6934098/
Abstract

In Attribute-Based Access Control (ABAC), access to resources is given based on the attributes of subjects, objects, and environment. There is an imminent need for the development of efficient algorithms that enable migration to ABAC. However, existing policy mining approaches do not consider possible adaptation to the policy of a similar organization. In this article, we address the problem of automatically determining an optimal assignment of attribute values to subjects for enabling the desired accesses to be granted while minimizing the number of ABAC rules used by each subject or other appropriate metrics. We show the problem to be NP-Complete and propose a heuristic solution.

摘要

在基于属性的访问控制(ABAC)中,对资源的访问是基于主体、客体和环境的属性来授予的。迫切需要开发能够实现向ABAC迁移的高效算法。然而,现有的策略挖掘方法没有考虑到对类似组织策略的可能适应性。在本文中,我们解决了自动确定主体属性值的最优分配问题,以便在最小化每个主体使用的ABAC规则数量或其他适当指标的同时,授予所需的访问权限。我们证明该问题是NP完全问题,并提出了一种启发式解决方案。

相似文献

1
Policy Adaptation in Hierarchical Attribute-Based Access Control Systems.
ACM Trans Internet Technol. 2019 Nov;19(3). doi: 10.1145/3323233.
2
Efficient bottom-up Mining of Attribute Based Access Control Policies.
IEEE Conf Collab Internet Comput. 2017 Oct;2017:339-348. doi: 10.1109/CIC.2017.00051. Epub 2017 Dec 14.
3
PolTree: A Data Structure for Making Efficient Access Decisions in ABAC.
Proc ACM Symp Access Control Model Technol. 2019 Jun;2019:25-35. doi: 10.1145/3322431.3325102.
4
Poster: Using Gini Impurity to Mine Attribute-based Access Control Policies with Environment Attributes.
Proc ACM Symp Access Control Model Technol. 2018 Jun;2018:213-215. doi: 10.1145/3205977.3208949.
5
PAMMELA: Policy Administration Methodology using Machine Learning.
SECRYPT. 2022 Jul;2022:147-157. doi: 10.5220/0011272400003283.
6
An Efficient Attribute-Based Access Control (ABAC) Policy Retrieval Method Based on Attribute and Value Levels in Multimedia Networks.
Sensors (Basel). 2020 Mar 20;20(6):1741. doi: 10.3390/s20061741.
7
Security Analysis of ABAC under an Administrative Model.
IET Inf Secur. 2019 Mar;13(2):96-103. doi: 10.1049/iet-ifs.2018.5010. Epub 2018 Oct 23.
8
Contemporaneous Update and Enforcement of ABAC Policies.
Proc ACM Symp Access Control Model Technol. 2022 Jun;2022:31-42. doi: 10.1145/3532105.3535021. Epub 2022 Jun 8.
9
Enabling Attribute-based Access Control in NoSQL Databases.
IEEE Trans Emerg Top Comput. 2023 Jan-Mar;11(1):208-223. doi: 10.1109/tetc.2022.3193577. Epub 2022 Jul 29.
10
Enabling the Deployment of ABAC Policies in RBAC Systems.
Data Appl Secur Priv XXXII (2018). 2018 Jul;10980:51-68. doi: 10.1007/978-3-319-95729-6_4. Epub 2018 Jul 10.

引用本文的文献

1
PAMMELA: Policy Administration Methodology using Machine Learning.
SECRYPT. 2022 Jul;2022:147-157. doi: 10.5220/0011272400003283.

本文引用的文献

1
Efficient bottom-up Mining of Attribute Based Access Control Policies.
IEEE Conf Collab Internet Comput. 2017 Oct;2017:339-348. doi: 10.1109/CIC.2017.00051. Epub 2017 Dec 14.

文献AI研究员

20分钟写一篇综述,助力文献阅读效率提升50倍。

立即体验

用中文搜PubMed

大模型驱动的PubMed中文搜索引擎

马上搜索

文档翻译

学术文献翻译模型,支持多种主流文档格式。

立即体验