Amani Abu Jabal, Maryam Davari, et al.
IEEE-TSC
Paper
The challenge of access control policies quality
Abstract
Access Control policies allow one to control data sharing among multiple subjects. For high assurance data security, it is critical that such policies be fit for their purpose. In this paper we introduce the notion of "policy quality" and elaborate on itsmany dimensions, such as consistency, completeness, andminimality.We introduce a framework supporting the analysis of policies with respect to the introduced quality dimensions and elaborate on research challenges, including policy analysis for large-scale distributed systems, assessment of policy correctness, and analysis of policies expressed in richer policy models.
Related
Conference paper
Framework for behavioral analytics in anomaly identification
Maroun Touma, Elisa Bertino, et al.
SPIE Defense + Security 2017
Conference paper
Automating role-based provisioning by learning from examples
Qun Ni, Jorge Lobo, et al.
SACMAT 2009
Conference paper
Generative policy framework for AI training data curation
Valentina Salapura, David Wood, et al.
SMARTCOMP 2019