Optimization of Access Control Policies

Kern, Sascha and Baumer, Thomas and Groll, Sebastian and Fuchs, Ludwig and Pernul, Guenther (2022) Optimization of Access Control Policies. JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 70: 103301. ISSN 2214-2126, 2214-2134

Full text not available from this repository. (Request a copy)

Abstract

Organizations undertake complex and costly projects to model high-quality Access Control Policies (ACPs). Once built, these policies must be maintained and managed in an ongoing process to keep their quality high. Insufficient maintenance leads to inaccurate authorization decisions and increases the policies' administrative effort and susceptibility to errors. While the initial modeling of ACPs has received significant research interest, their optimization is not yet covered as broadly. This work provides a theoretical foundation for ACP quality and its optimization. Furthermore, it analyzes how existing research addresses optimization of ACPs with regard to six crucial optimization dimensions. It presents a structured literature survey tracing these optimization dimensions, the contributed research artifact and data requirements. Building on this literature catalogue, this work elaborates on inaccuracies for user permission assignments, data availability, minimal perturbation and recommendation-based optimization.

Item Type: Article
Uncontrolled Keywords: CONTROL MODEL; ROLES; REFINEMENT; DISCOVERY; USER; RBAC; Access Management; Data quality; Policy optimization; Policy maintenance; Role-Based Access Control; Attribute-Based Access Control
Subjects: 300 Social sciences > 330 Economics
Divisions: Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Informatics and Data Science > Department Information Systems > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Depositing User: Dr. Gernot Deinzer
Date Deposited: 09 Jan 2024 10:12
Last Modified: 09 Jan 2024 10:12
URI: https://pred.uni-regensburg.de/id/eprint/57117

Actions (login required)

View Item View Item
pred is powered by EPrints 3.4 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.