Towards adaptive access control
Towards adaptive access control
Access control systems are nowadays the first line of defence of modern
IT systems. However, their effectiveness is often compromised by policy
miscofigurations that can be exploited by insider threats. In this paper, we present
an approach based on machine learning to refine attribute-based access control
policies in order to reduce the risks of users abusing their privileges. Our approach
exploits behavioral patterns representing how users typically access resources
to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.
99-109
Argento, Luciano
f544a605-0130-47ce-819c-eb6ff7e3c7c2
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Paci, Federica
9fbf3e5b-ae03-40e8-a75a-3657cbc9216e
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Zannone, Nicola
c92b7e50-a300-4681-a7f4-f4741dcc7c62
Argento, Luciano
f544a605-0130-47ce-819c-eb6ff7e3c7c2
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Paci, Federica
9fbf3e5b-ae03-40e8-a75a-3657cbc9216e
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Zannone, Nicola
c92b7e50-a300-4681-a7f4-f4741dcc7c62
Argento, Luciano, Margheri, Andrea, Paci, Federica, Sassone, Vladimiro and Zannone, Nicola
(2018)
Towards adaptive access control.
In Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings.
vol. 10980 LNCS,
Springer.
.
(doi:10.1007/978-3-319-95729-6_7).
Record type:
Conference or Workshop Item
(Paper)
Abstract
Access control systems are nowadays the first line of defence of modern
IT systems. However, their effectiveness is often compromised by policy
miscofigurations that can be exploited by insider threats. In this paper, we present
an approach based on machine learning to refine attribute-based access control
policies in order to reduce the risks of users abusing their privileges. Our approach
exploits behavioral patterns representing how users typically access resources
to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.
Text
AdaptiveAccessControl
- Accepted Manuscript
More information
Accepted/In Press date: 1 January 2018
e-pub ahead of print date: 10 July 2018
Venue - Dates:
32nd Annual IFIP WG 11.3<br/>Conference on Data and Applications Security and Privacy, 2018-07-16
Identifiers
Local EPrints ID: 421536
URI: http://eprints.soton.ac.uk/id/eprint/421536
ISSN: 1611-3349
PURE UUID: 7c30e2bb-b468-4fbe-8b5f-c831e62039b3
Catalogue record
Date deposited: 14 Jun 2018 16:30
Last modified: 16 Mar 2024 03:18
Export record
Altmetrics
Contributors
Author:
Luciano Argento
Author:
Federica Paci
Author:
Vladimiro Sassone
Author:
Nicola Zannone
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics