The University of Southampton
University of Southampton Institutional Repository

Towards adaptive access control

Towards adaptive access control
Towards adaptive access control
Access control systems are nowadays the first line of defence of modern
IT systems. However, their effectiveness is often compromised by policy
miscofigurations that can be exploited by insider threats. In this paper, we present
an approach based on machine learning to refine attribute-based access control
policies in order to reduce the risks of users abusing their privileges. Our approach
exploits behavioral patterns representing how users typically access resources
to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.
1611-3349
99-109
Springer
Argento, Luciano
f544a605-0130-47ce-819c-eb6ff7e3c7c2
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Paci, Federica
9fbf3e5b-ae03-40e8-a75a-3657cbc9216e
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Zannone, Nicola
c92b7e50-a300-4681-a7f4-f4741dcc7c62
Argento, Luciano
f544a605-0130-47ce-819c-eb6ff7e3c7c2
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Paci, Federica
9fbf3e5b-ae03-40e8-a75a-3657cbc9216e
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Zannone, Nicola
c92b7e50-a300-4681-a7f4-f4741dcc7c62

Argento, Luciano, Margheri, Andrea, Paci, Federica, Sassone, Vladimiro and Zannone, Nicola (2018) Towards adaptive access control. In Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings. vol. 10980 LNCS, Springer. pp. 99-109 . (doi:10.1007/978-3-319-95729-6_7).

Record type: Conference or Workshop Item (Paper)

Abstract

Access control systems are nowadays the first line of defence of modern
IT systems. However, their effectiveness is often compromised by policy
miscofigurations that can be exploited by insider threats. In this paper, we present
an approach based on machine learning to refine attribute-based access control
policies in order to reduce the risks of users abusing their privileges. Our approach
exploits behavioral patterns representing how users typically access resources
to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.

Text
AdaptiveAccessControl - Accepted Manuscript
Download (365kB)

More information

Accepted/In Press date: 1 January 2018
e-pub ahead of print date: 10 July 2018
Venue - Dates: 32nd Annual IFIP WG 11.3<br/>Conference on Data and Applications Security and Privacy, 2018-07-16

Identifiers

Local EPrints ID: 421536
URI: http://eprints.soton.ac.uk/id/eprint/421536
ISSN: 1611-3349
PURE UUID: 7c30e2bb-b468-4fbe-8b5f-c831e62039b3
ORCID for Andrea Margheri: ORCID iD orcid.org/0000-0002-5048-8070
ORCID for Federica Paci: ORCID iD orcid.org/0000-0003-3122-0236
ORCID for Vladimiro Sassone: ORCID iD orcid.org/0000-0002-6432-1482

Catalogue record

Date deposited: 14 Jun 2018 16:30
Last modified: 10 Sep 2024 01:40

Export record

Altmetrics

Contributors

Author: Luciano Argento
Author: Andrea Margheri ORCID iD
Author: Federica Paci ORCID iD
Author: Vladimiro Sassone ORCID iD
Author: Nicola Zannone

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×