Visual Role Mining: A Picture Is Worth a Thousand Roles

Colantonio, Alessandro; Pietro, Roberto Di; Ocello, Alberto; Verde, Nino Vincenzo

doi:10.1109/tkde.2011.37

Cited by 35 publications

(26 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Visual Role Mining is a fairly new technique initially proposed in [10]. It reorders rows and columns of the input UP A-matrix in order to create clusters of adjoined permissions.…”

Section: Development Of Role Mining Researchmentioning

confidence: 99%

“…Matrix sorting aims at covering an initial access control state by sorting the input UP A-matrix based on user accounts with similar permissions and permissions that are assigned a similar set of user accounts. [10] introduced the ADVISER and EXTRACT algorithms that generate a matrix representation of the initial UP A-matrix that clusters permissions and user accounts together. As a result, large areas covering initial UP A can be visually detected by a human role engineer.…”

Section: Minimize Users/permissions Per Role and Minimize/maximize Rolementioning

confidence: 99%

See 1 more Smart Citation

How to Discover High-Quality Roles? A Survey and Dependency Analysis of Quality Criteria in Role Mining

Kunz

Fuchs²,

Netter³

et al. 2015

Communications in Computer and Information Science

View full text Add to dashboard Cite

Abstract.Roles have evolved into the de facto standard for access control in Enterprise Identity Management. However, companies struggle to develop and maintain a role-based access control state. For the initial role deployment, role mining is widely used. Due to the high number and complexity of available role mining algorithms, companies fail to perceive which is selected best according to their needs. Furthermore, requirements on the composition of roles such as reduction of administration cost are to be taken into account in role development. In order to give them guidance, in this paper we aggregate existing role mining approaches and classify them. For consideration of individual prerequisites we extract quality criteria that should be met. Later on, we discuss interdependencies between the criteria to help role developers avoid unwanted side-effects and produce RBAC states that are tailored to their preferences.

show abstract

“…Visual Role Mining is a fairly new technique initially proposed in [10]. It reorders rows and columns of the input UP A-matrix in order to create clusters of adjoined permissions.…”

Section: Development Of Role Mining Researchmentioning

confidence: 99%

Section: Minimize Users/permissions Per Role and Minimize/maximize Rolementioning

confidence: 99%

How to Discover High-Quality Roles? A Survey and Dependency Analysis of Quality Criteria in Role Mining

Kunz

Fuchs²,

Netter³

et al. 2015

Communications in Computer and Information Science

View full text Add to dashboard Cite

show abstract

“…Visual Role Mining is a fairly new technique initially proposed in (Colantonio et al, 2012). It reorders rows and columns of the input UPA-matrix in order to create clusters of adjoined permissions.…”

Section: Role Mining Surveymentioning

confidence: 99%

“…Matrix sorting aims at covering an initial access control state by sorting the input UPA-matrix based on user accounts with similar permissions and permissions that are assigned a similar set of user accounts. (Colantonio et al, 2012) introduced the ADVISER and EXTRACT algorithms that generate a matrix representation of the initial UPA-matrix that clusters permissions and user accounts together. As a result, large areas covering initial UPA can be visually detected by a human role engineer.…”

Section: Quality-related Criteriamentioning

confidence: 99%

Analyzing Quality Criteria in Role-based Identity and Access Management

Kunz

Fuchs

Netter

et al. 2015

Proceedings of the 1st International Conference on Information Systems Security and Privacy

View full text Add to dashboard Cite

Abstract:Roles have turned into the de facto standard for access control in enterprise identity management systems. However, as roles evolve over time, companies struggle to develop and maintain a consistent role model. Up to now, the core challenge of measuring the current quality of a role model and selecting criteria for its optimization remains unsolved. In this paper, we conduct a survey of existing role mining techniques and identify quality criteria inherently used by these approaches. This guides organizations during the selection of a role mining technique that matches their company-specific quality preferences. Moreover, our analysis aims to stimulate the research community to integrate quality metrics in future role mining approaches.

show abstract

“…Other role mining approaches include role mining with noisy data [12], where the input data is first cleansed to remove the noise before generating candidate roles, role mining based on weights [10] in which a certain weight is associated with each permission depending on its importance, mining roles having low structural complexity and semantic meaning [11], and Visual Role Mining (VRM) [4], which enumerates roles based on a visual analysis of the graphical representation of the user-permission assignments. Xu and Stoller [19] propose algorithms for role mining which optimize a number of policy quality metrics.…”

Section: Related Workmentioning

confidence: 99%

Toward Mining of Temporal Roles

Mitra

Sural

Atluri

et al. 2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. In Role-Based Access Control (RBAC), users acquire permissions through their assigned roles. Role mining, the process of finding a set of roles from direct user-permission assignments, is essential for successful implementation of RBAC. In many organizations it is often required that users are given permissions that can vary with time. To handle such requirements, temporal extensions of RBAC like Temporal-RBAC (TRBAC) and Generalized Temporal Role-Based Access Control (GTRBAC) have been proposed. Existing role mining techniques, however, cannot be used to process the temporal element associated with roles in these models. In this paper, we propose a method for mining roles in the context of TRBAC. First we formally define the Temporal Role Mining Problem (TRMP), and then show that the TRMP problem is NP-complete and present a heuristic approach for solving it.

show abstract

Visual Role Mining: A Picture Is Worth a Thousand Roles

Cited by 35 publications

References 25 publications

How to Discover High-Quality Roles? A Survey and Dependency Analysis of Quality Criteria in Role Mining

How to Discover High-Quality Roles? A Survey and Dependency Analysis of Quality Criteria in Role Mining

Analyzing Quality Criteria in Role-based Identity and Access Management

Toward Mining of Temporal Roles

Contact Info

Product

Resources

About