Name
Abstract | ||
|---|---|---|
Role based access control is an efficient and effective way to manage and govern permissions to a large number of users. However, defining a role infrastructure that accurately reflects the internal functionalities and workings of a large enterprise is a challenging task. Recent research has focused on the theoretical components of automated role identification while practical applications for identifying roles remain unsolved.This research proposes a practical data mining heuristic method that is fast, scalable and capable of identifying comprehensive roles and placing them into a hierarchy. Permission set pattern data mining can be used to identify the roles with partial orderings that cover the largest portion of user permissions within a system. We test the algorithm on real user permission assignments as well as on generated data sets. Roles identified in test sets cover up to 85% of user permissions and analysis show the roles offer significant administrative benefit. We find interesting correlations between roles and their relationships and analyse the tradeoffs between identifying roles with complete coverage to identifying roles that are most effective and offer significant administrative benefit. |
Year | DOI | Venue |
|---|---|---|
2008 | 10.1109/ACSAC.2008.21 | ACSAC |
Keywords | Field | DocType |
practical data,permission set pattern data,comprehensive role,role infrastructure,significant administrative benefit,large enterprise,real user permission assignment,discovering practical,automated role identification,user permission,permission set mining,useful roles,data mining,data sets,authorisation,role based access control,algorithm design and analysis,access control,construction industry,set cover,partial order | Permission,Heuristic,Data set,Algorithm design,Computer security,Computer science,Role-based access control,Access control,Hierarchy,Scalability | Conference |
ISSN | Citations | PageRank |
1063-9527 | 24 | 0.85 |
References | Authors | |
10 | 4 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Dana Zhang | 1 | 99 | 5.73 |
| kotagiri ramamohanarao | 2 | 4716 | 993.87 |
| Tim Ebringer | 3 | 144 | 9.28 |
| Trevor Yann | 4 | 42 | 2.20 |