English
Related papers

Related papers: Mining Attribute-based Access Control Policies

200 papers
Mining Attribute-Based Access Control Policies from Logs

Attribute-based access control (ABAC) provides a high level of flexibility that promotes security and information sharing. ABAC policy mining algorithms have potential to significantly reduce the cost of migration to ABAC, by partially…

Cryptography and Security · Computer Science 2018-02-14 Zhongyuan Xu , Scott D. Stoller
An Approach for Handling Missing Attribute Values in Attribute-Based Access Control Policy Mining

Attribute-Based Access Control (ABAC) enables highly expressive and flexible access decisions by considering a wide range of contextual attributes. ABAC policies use logical expressions that combine these attributes, allowing for precise…

Cryptography and Security · Computer Science 2025-05-06 Thang Bui , Elliot Shabram , Anthony Matricia
Learning Attribute-Based and Relationship-Based Access Control Policies with Unknown Values

Attribute-Based Access Control (ABAC) and Relationship-based access control (ReBAC) provide a high level of expressiveness and flexibility that promote security and information sharing, by allowing policies to be expressed in terms of…

Cryptography and Security · Computer Science 2020-11-24 Thang Bui , Scott D. Stoller
An Automatic Attribute Based Access Control Policy Extraction from Access Logs

With the rapid advances in computing and information technologies, traditional access control models have become inadequate in terms of capturing fine-grained, and expressive security requirements of newly emerging applications. An…

Cryptography and Security · Computer Science 2021-02-02 Leila Karimi , Maryam Aldairi , James Joshi , Mai Abdelhakim
Greedy and Evolutionary Algorithms for Mining Relationship-Based Access Control Policies

Relationship-based access control (ReBAC) provides a high level of expressiveness and flexibility that promotes security and information sharing. We formulate ReBAC as an object-oriented extension of attribute-based access control (ABAC) in…

Cryptography and Security · Computer Science 2018-08-23 Thang Bui , Scott D. Stoller , Jiajie Li
Towards Harnessing the Power of LLMs for ABAC Policy Mining

This paper presents an empirical investigation into the capabilities of Large Language Models (LLMs) to perform automated Attribute-based Access Control (ABAC) policy mining. While ABAC provides fine-grained, context-aware access…

Cryptography and Security · Computer Science 2025-11-25 More Aayush Babasaheb , Shamik Sural
Efficient and Extensible Policy Mining for Relationship-Based Access Control

Relationship-based access control (ReBAC) is a flexible and expressive framework that allows policies to be expressed in terms of chains of relationship between entities as well as attributes of entities. ReBAC policy mining algorithms have…

Cryptography and Security · Computer Science 2019-08-12 Thang Bui , Scott D. Stoller , Hieu Le
ABAC Lab: An Interactive Platform for Attribute-based Access Control Policy Analysis, Tools, and Datasets

Attribute-Based Access Control (ABAC) provides expressiveness and flexibility, making it a compelling model for enforcing fine-grained access control policies. To facilitate the transition to ABAC, extensive research has been conducted to…

Cryptography and Security · Computer Science 2025-05-14 Thang Bui , Anthony Matricia , Emily Contreras , Ryan Mauvais , Luis Medina , Israel Serrano
A Decision Tree Learning Approach for Mining Relationship-Based Access Control Policies

Relationship-based access control (ReBAC) provides a high level of expressiveness and flexibility that promotes security and information sharing, by allowing policies to be expressed in terms of chains of relationships between entities.…

Cryptography and Security · Computer Science 2020-05-14 Thang Bui , Scott D. Stoller
Mining Hierarchical Temporal Roles with Multiple Metrics

Temporal role-based access control (TRBAC) extends role-based access control to limit the times at which roles are enabled. This paper presents a new algorithm for mining high-quality TRBAC policies from timed ACLs (i.e., ACLs with time…

Cryptography and Security · Computer Science 2017-10-17 Scott D. Stoller , Thang Bui
PAMMELA: Policy Administration Methodology using Machine Learning

In recent years, Attribute-Based Access Control (ABAC) has become quite popular and effective for enforcing access control in dynamic and collaborative environments. Implementation of ABAC requires the creation of a set of attribute-based…

Cryptography and Security · Computer Science 2021-11-16 Varun Gumma , Barsha Mitra , Soumyadeep Dey , Pratik Shashikantbhai Patel , Sourabh Suman , Saptarshi Das
The Next 700 Policy Miners: A Universal Method for Building Policy Miners

A myriad of access control policy languages have been and continue to be proposed. The design of policy miners for each such language is a challenging task that has required specialized machine learning and combinatorial algorithms. We…

Cryptography and Security · Computer Science 2019-08-28 Carlos Cotrini , Luca Corinzia , Thilo Weghorn , David Basin
Role Mining with Probabilistic Models

Role mining tackles the problem of finding a role-based access control (RBAC) configuration, given an access-control matrix assigning users to access permissions as input. Most role mining approaches work by constructing a large set of…

Cryptography and Security · Computer Science 2013-01-08 Mario Frank , Joachim M. Buhmann , David Basin
Access control in a distributed micro-cloud environment

Proliferation of systems that generate enormous amounts of data and operate in real time has led researchers to rethink the current organization of the cloud. Many proposed solutions consist of a number of small data centers in the vicinity…

Cryptography and Security · Computer Science 2024-10-29 Tamara Ranković , Miloš Simić , Milan Stojkov , Goran Sladić
Graph Model Implementation of Attribute-Based Access Control Policies

Attribute-based access control (ABAC) promises a powerful way of formalizing access policies in support of a wide range of access management scenarios. Efficient implementation of ABAC in its general form is still a challenge, especially…

Cryptography and Security · Computer Science 2019-09-24 Hadi Ahmadi , Derek Small
Decentralized Policy Information Points for Multi-Domain Environments

Access control models have been developed to control authorized access to sensitive resources. This control of access is important as there is now a need for collaborative resource sharing between multiple organizations over open…

Cryptography and Security · Computer Science 2021-08-20 M Ridwanur Rahman , Ahmad Salehi Shahraki , Carsten Rudolph
Generation of Human Comprehensible Access Control Policies from Audit Logs

Over the years, access control systems have become increasingly more complex, often causing a disconnect between what is envisaged by the stakeholders in decision-making positions and the actual permissions granted as evidenced from access…

Cryptography and Security · Computer Science 2026-03-17 Gautam Kumar , Ravi Sundaram , Shamik Sural
Adaptive ABAC Policy Learning: A Reinforcement Learning Approach

With rapid advances in computing systems, there is an increasing demand for more effective and efficient access control (AC) approaches. Recently, Attribute Based Access Control (ABAC) approaches have been shown to be promising in…

Machine Learning · Computer Science 2021-05-19 Leila Karimi , Mai Abdelhakim , James Joshi
Automated Certification of Authorisation Policy Resistance

Attribute-based Access Control (ABAC) extends traditional Access Control by considering an access request as a set of pairs attribute name-value, making it particularly useful in the context of open and distributed systems, where security…

Cryptography and Security · Computer Science 2013-06-21 Andreas Griesmayer , Charles Morisset
The Equivalent Conversions of the Role-Based Access Control Model

The problems which are important for the effective functioning of an access control policy in a large information system (LIS) are selected. The general concept of a local optimization of a role-based access control (RBAC) model is…

Cryptography and Security · Computer Science 2018-12-27 N. F. Bogachenko
‹ Prev 1 2 3 10 Next ›