Hierarchical role-based access control development

Kolegov, D. N.

doi:10.17223/20710410/17/8

Cited by 2 publications

(1 citation statement)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the context of a role-based access control, for which many modifications and extensions have been proposed [3,4,5,6,7,8,9,10], first of all an analysis of the problem of users' excessive permissions is needed. Obviously, this indicator is decisive in assessing the possibility of unauthorized transmission of information.…”

Section: Introductionmentioning

confidence: 99%

Severity Level of Permissions in Role-Based Access Control

Белим

Bogachenko

Kabanov

2018

2018 Dynamics of Systems, Mechanisms and Machines (Dynamics)

View full text Add to dashboard Cite

The analysis of hidden channels of information leakage with respect to role-based access control includes monitoring of excessive permissions among users. It is not always possible to completely eliminate redundancy. The problem of ranking permissions arises in order to identify the most significant, for which redundancy is most not desirable. A numerical characteristic that reflects the value or importance of permissions is called the "severity level". A number of heuristic assumptions have been formulated that make it possible to establish the dependence of the severity level of permissions on the structure of the role hierarchy. A methodology for solving the problem is proposed, using analytic hierarchy process and taking into account these assumptions. The main idea is that the decision tree of the process will be the role graph.

show abstract