TY - GEN
T1 - Mining attribute-based access control policies from RBAC policies
AU - Xu, Zhongyuan
AU - Stoller, Scott D.
PY - 2013
Y1 - 2013
N2 - Role-based access control (RBAC) is very widely used but has notable limitations, prompting a shift towards attribute-based access control (ABAC). However, the cost of developing an ABAC policy can be a significant obstacle to migration from RBAC to ABAC. This paper presents the first formal definition of the problem of mining ABAC policies from RBAC policies and attribute data, and the first algorithm specifically designed to mine an ABAC policy from an RBAC policy and attribute data.
AB - Role-based access control (RBAC) is very widely used but has notable limitations, prompting a shift towards attribute-based access control (ABAC). However, the cost of developing an ABAC policy can be a significant obstacle to migration from RBAC to ABAC. This paper presents the first formal definition of the problem of mining ABAC policies from RBAC policies and attribute data, and the first algorithm specifically designed to mine an ABAC policy from an RBAC policy and attribute data.
KW - attribute-based access control
KW - role mining
KW - role-based access control
UR - https://www.scopus.com/pages/publications/84893816117
U2 - 10.1109/CEWIT.2013.6713753
DO - 10.1109/CEWIT.2013.6713753
M3 - Conference contribution
AN - SCOPUS:84893816117
SN - 9781479925469
T3 - 2013 10th International Conference and Expo on Emerging Technologies for a Smarter World, CEWIT 2013
BT - 2013 10th International Conference and Expo on Emerging Technologies for a Smarter World, CEWIT 2013
PB - IEEE Computer Society
T2 - 2013 10th International Conference and Expo on Emerging Technologies for a Smarter World, CEWIT 2013
Y2 - 21 October 2013 through 22 October 2013
ER -