VisMAP: Visual Mining of Attribute-Based Access Control Policies

Saptarshi Das, Shamik Sural, Jaideep Vaidya, Vijayalakshmi Atluri, Gerhard Rigoll

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

8 Scopus citations

Abstract

Policy mining has been identified as one of the most challenging tasks towards deployment of Attribute-Based Access Control (ABAC) in any organization. This work introduces a novel approach for visual mining of ABAC policies. The fundamental objective is to graphically portray the existing accesses to facilitate visual elucidation and mining of meaningful authorization rules. We represent the existing accesses in the form of a binary matrix and formulate the problem of finding the best representation of the binary matrix as a minimization problem. The authorization rules are then extracted from the visual representation of the access control matrix in such a way that the number of rules required to satisfy all the existing accesses is minimum. The problem is shown to be NP-Complete and hence, heuristic solution is proposed. We experimentally evaluate our proposed approach on a number of synthetically generated data sets to study its robustness and scalability in a variety of situations.

Original languageEnglish
Title of host publicationInformation Systems Security - 15th International Conference, ICISS 2019, Proceedings
EditorsDeepak Garg, N. V. Kumar, Rudrapatna K. Shyamasundar
PublisherSpringer
Pages79-98
Number of pages20
ISBN (Print)9783030369446
DOIs
StatePublished - 2019
Event15th International Conference on Information Systems Security, ICISS 2019 - Hyderabad, India
Duration: 16 Dec 201920 Dec 2019

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume11952 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference15th International Conference on Information Systems Security, ICISS 2019
Country/TerritoryIndia
CityHyderabad
Period16/12/1920/12/19

Keywords

  • Attribute-Based Access Control
  • Policy mining
  • Visual policy representation

Fingerprint

Dive into the research topics of 'VisMAP: Visual Mining of Attribute-Based Access Control Policies'. Together they form a unique fingerprint.

Cite this