Sciweavers

Share
ICDIM
2010
IEEE

Detecting incompleteness in access control policies using data classification schemes

10 years 5 days ago
Detecting incompleteness in access control policies using data classification schemes
In a set of access control policies, incompleteness is the existence of situations for which no policy applies. Some of these situations can be exploited by attackers, to obtain unintended access or to compromise integrity. Such cases can be difficult to foresee, since typical policy sets consist of thousands of rules. In this paper, we adopt data classification techniques widely used in the machine learning community for detecting incompleteness in sets of access of control policies. To the best of our knowledge, we are the first ones to use data classification algorithms to detect incompleteness in sets of access control policies. We show that our proposed solution is simple, efficient and practical.
Riaz Ahmed Shaikh, Kamel Adi, Luigi Logrippo, Serg
Added 03 Mar 2011
Updated 03 Mar 2011
Type Journal
Year 2010
Where ICDIM
Authors Riaz Ahmed Shaikh, Kamel Adi, Luigi Logrippo, Serge Mankovski
Comments (0)
books