A probabilistic approach to hybrid role mining

Frank, Mario; Streich, Andreas P.; Basin, David; Buhmann, Joachim M.

doi:10.1145/1653662.1653675

Cited by 77 publications

(79 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Attribute-based Role Mining such as (Frank et al, 2009) are trying to incorporate business information through attributes into role mining. They rely on the assumption that additional semantic data is available and can be taken into account.…”

Section: Role Mining Surveymentioning

confidence: 99%

“…It can be seen as one of the most advanced measures that solely relies on the components of an RBAC state. It is usable for both, individual roles and role sets, and thus allows for a good AnalyzingQualityCriteriainRole-basedIdentityandAccessManagement Attribute-based Approaches (Frank et al, 2009) (Han et al, 2012) Uses criteria: Yes No comparability of RBAC states. As a result of its popularity, several existing role mining approaches are able to consider the WSC.…”

Section: Quality-related Criteriamentioning

confidence: 99%

See 1 more Smart Citation

Analyzing Quality Criteria in Role-based Identity and Access Management

Kunz

Fuchs

Netter

et al. 2015

Proceedings of the 1st International Conference on Information Systems Security and Privacy

View full text Add to dashboard Cite

Abstract:Roles have turned into the de facto standard for access control in enterprise identity management systems. However, as roles evolve over time, companies struggle to develop and maintain a consistent role model. Up to now, the core challenge of measuring the current quality of a role model and selecting criteria for its optimization remains unsolved. In this paper, we conduct a survey of existing role mining techniques and identify quality criteria inherently used by these approaches. This guides organizations during the selection of a role mining technique that matches their company-specific quality preferences. Moreover, our analysis aims to stimulate the research community to integrate quality metrics in future role mining approaches.

show abstract

Section: Role Mining Surveymentioning

confidence: 99%

Section: Quality-related Criteriamentioning

confidence: 99%

Analyzing Quality Criteria in Role-based Identity and Access Management

Kunz

Fuchs

Netter

et al. 2015

Proceedings of the 1st International Conference on Information Systems Security and Privacy

View full text Add to dashboard Cite

show abstract

“…As for the bottom-up approach, Kuhlmann et al [13] first introduced the term "role mining", trying to apply existing data mining techniques to elicit roles from existing access data. After that, several algorithms explicitly designed for role engineering were proposed [10,11,18,20,21]. Several works prove that the role mining problem is reducible to many other well-known NP-hard problems, such as clique partition, binary matrix factorization, bi-clustering, graph vertex coloring [7] to cite a few.…”

Section: Related Workmentioning

confidence: 99%

“…Only few recent works value business requirements in role mining [2,4,11,14]. Their main limitation is to propose theoretical frameworks that are difficult to apply in real cases.…”

Section: Introductionmentioning

confidence: 99%

“…However, selecting the measure that fits the needs of an organization is not trivial, and no best practices exist to define it. In [11] the authors offer a probabilistic model: to find a set of roles that approximates the role mining problem (by considering potentially exceptional user-permission assignments); and, to contextually propose roles that likely are meaningful (by taking into account the relevance of each business attribute). However, there is no guarantee that the introduced approximation is licit.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Mining Business-Relevant RBAC States through Decomposition

Colantonio

Pietro

Ocello

et al. 2010

Security and Privacy – Silver Linings in the Cloud

View full text Add to dashboard Cite

Blockchain‐based access control for enterprise blockchain applications

Markus²,

Subhod³

et al. 2019

Int J Network Mgmt

View full text Add to dashboard Cite

Summary Access control is one of the fundamental security mechanisms of IT systems. Most existing access control schemes rely on a centralized party to manage and enforce access control policies. As blockchain technologies, especially permissioned networks, find more applicability beyond cryptocurrencies in enterprise solutions, it is expected that the security requirements will increase. Therefore, it is necessary to develop an access control system that works in a decentralized environment without compromising the unique features of a blockchain. A straightforward method to support access control is to deploy a firewall in front of the enterprise blockchain application. However, this approach does not take advantage of the desirable features of blockchain. In order to address these concerns, we propose a novel blockchain‐based access control scheme, which keeps the decentralization feature for access control–related operations. The newly proposed system also provides the capability to protect user's privacy by leveraging ring signature. We implement a prototype of the scheme using Hyperledger Fabric and assess its performance to show that it is practical for real‐world applications.

show abstract

A probabilistic approach to hybrid role mining

Cited by 77 publications

References 23 publications

Analyzing Quality Criteria in Role-based Identity and Access Management

Analyzing Quality Criteria in Role-based Identity and Access Management

Mining Business-Relevant RBAC States through Decomposition

Blockchain‐based access control for enterprise blockchain applications

Contact Info

Product

Resources

About