The RBAC System Based on Role Risk and User Trust

Jin, Caiyuan; Shen, Aodong; Yu, Wei

doi:10.17706/ijcce.2016.5.5.374-380

Cited by 3 publications

(3 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The risk of an ACP reflects the aggregated risk of the permissions that are permitted by it. ACP modelling or optimization methods can use risk minimization as an objective to reduce the impact of excessive permission assignments (Jin et al, 2016;Dos Santos et al, 2014). High risk is also an indicator for high maintenance priority and can serve as context information for policy engineers and reviewers, based on the assumption that a high risk value suggests a more restrictive handling than a low one (Fuchs et al, 2014).…”

Section: Established Quality Criteriamentioning

confidence: 99%

Optimization of Access Control Policies

Kern¹,

Baumer²,

Groll³

et al. 2022

Journal of Information Security and Applications

View full text Add to dashboard Cite

Section: Established Quality Criteriamentioning

confidence: 99%

Optimization of Access Control Policies

Kern¹,

Baumer²,

Groll³

et al. 2022

Journal of Information Security and Applications

View full text Add to dashboard Cite

“…The bottom-up approach, according to Hu et al [8] can uncover roles from the existing user-permission assignments (UPA) automatically that is known as role mining and because of its nature that based on computing-intensive approach, it is widely applied to build a RBAC model. However, to build and sustain a RBAC model, role mining is becoming a great interest [9][10] and the authors have identified the need of role mining to design and develop an algorithm to determine roles based on data mining methods because it could reduce the cost of allocating roles manually thus able to construct a concise RBAC system. The next section would provide in-depth analysis on methodology to build a RBAC model using role mining algorithm.…”

Section: Literature Reviewmentioning

confidence: 99%

“…e) RH ⊆ R × R, a partial order on roles described the inheritance relationships. RBAC state could be expressed as <R, UA, PA, RH> that is consistent with an access control configuration =< , , >, where U defines a set of all users, P is a set of all permissions and ⊆ × as the user-permission relation [10].…”

Section: Definition 1 (Rbac Model)mentioning

confidence: 99%

A Conceptual Model of Role Based Access Control Using Role Mining Algorithm

Hamid¹,

Ahmad²,

Selamat³

2018

IJEECS

View full text Add to dashboard Cite

Numerous studies have shown that currently, role-based access control has becoming one of the successful access control model because of its principle that could simplifies the work of security administrators. However, to construct a concise, role-based access control system, a good role mining algorithm structure is needed therefore the objectives of this paper are firstly, to provide a general overview on phases that involved in designing and developing the algorithm and secondly, to introduce a conceptual model that constructed based on the analysis and this model represents a general process in role mining model. This model involved series of phases that begin with the input of data, pre-processing stage, candidate role generation phase, role selection and role assignment process and lastly number of roles as generated output.

show abstract