Permission set mining: Discovering practical and useful roles

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn , Issue , 2008, Pages 247-256

  Zhang, Dana ^a   Ramamohanarao, Kotagiri ^a   Yann, Trevor ^b   Ebringer, Tim ^a  

^a UNIVERSITY OF MELBOURNE   (Australia)

^b CA Labs   (Israel)

Author keywords

[No Author keywords available]

Indexed keywords

DATA SETS; ENTERPRISE IS; PARTIAL ORDERINGS; PATTERN DATUM; ROLE IDENTIFICATIONS; ROLE-BASED ACCESS CONTROLS; SET MININGS; TEST SETS;

ACCESS CONTROL; HEURISTIC METHODS; INFORMATION MANAGEMENT; SECURITY SYSTEMS;

COMPUTER APPLICATIONS;

EID: 60649116448     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2008.21     Document Type: Conference Paper

References (19)

1. ANSI. American National Standard for Information Technology - Role Based Access Control. ANSI INCITS 359-2004.
2. A. Ceglar and J. F. Roddick. Association mining. ACM Computing Surverys, 38(2):5, 2006.
3. E. J. Coyne. Role engineering. In RBAC '95: Proceedings of the first ACM Workshop on Role-based access control, pages 4-5, New York, NY, USA, 1996. ACM Press.
4. A. Ene, W. Horne, N. Milosavljevic, P. Rao, R. Schreiber, and R. E. Tarjan. Fast exact and heuristic methods for role minimization problems. In SACMAT '08: Proceedings of the 13th ACM symposium on Access control models and technologies, pages 1-10, New York, NY, USA, 2008. ACM.
5. E. B. Fernandez and J. C. Hawkins. Determining role rights from use cases. In RBAC '97: Proceedings of the second ACM workshop on Role-based access control, pages 121-125, New York, NY, USA, 1997. ACM Press.
6. D. F. Ferraiolo and D. R. Kuhn. Role-Based Access Control. In Proceedings of the 15th NIST-NCSC National Computer Security Conference, pages 554-563, Bultimore, Maryland, USA, 1992.
7. D. F. Ferraiolo, D. R. Kuhn, and R. Chandramouli. Role-Based Access Control. Artech House, Inc., 2003.
8. J. Han and M. Kamber. Data Mining: Concepts and Techniques. Morgan Kaufmann, second edition, 2006.
9. J. Han, J. Pei, Y. Yin, and R. Mao. Mining frequent patterns without candidate generation: A frequent-pattern tree approach. Data Minining and Knowledge Discovery, 8(1):53-87, 2004.
10. M. Kuhlmann, D. Shohat, and G. Schimpf. Role mining - revealing business roles for security administration using data mining technology. In SACMAT '03: Proceedings of the eighth ACM symposium on Access control models and technologies, pages 179-186, New York, NY, USA, 2003. ACM Press.
11. H. Lu, J. Vaidya, and V. Atluri. Optimal boolean matrix decomposition: Application to role engineering. In IEEE 24th International Conference on Data Engineering, Cancun, Mexico, April 2008.
12. I. Molloy, H. Chen, T. Li, Q. Wang, N. Li, E. Bertino, S. Calo, and J. Lobo. Mining roles with semantic meanings. In SACMAT '08: Proceedings of the 13th ACM symposium on Access control models and technologies, pages 21-30, New York, NY, USA, 2008. ACM.
13. G. Neumann and M. Strembeck. A scenario-driven role engineering process for functional RBAC roles. In SACMAT '02: Proceedings of the seventh ACM symposium on Access control models and technologies, pages 33-42, New York, NY, USA, 2002. ACM Press.
14. H. Roeckle, G. Schimpf, and R. Weidinger. Process-oriented approach for role-finding to implement role-based security administration in a large industrial organization. In RBAC '00: Proceedings of the fifth ACM workshop on Role-based access control, pages 103-110, New York, NY, USA, 2000. ACM Press.
15. J. Schlegelmilch and U. Steffens. Role mining with ORCA. In SACMAT '05: Proceedings of the tenth ACM symposium on Access control models and technologies, pages 168-176, New York, NY, USA, 2005. ACM Press.
16. J. Vaidya, V. Atluri, and Q. Guo. The role mining problem: finding a minimal descriptive set of roles. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, pages 175-184, New York, NY, USA, 2007. ACM.
17. J. Vaidya, V. Atluri, and J. Warner. Roleminer: mining roles using subset enumeration. In CCS '06: Proceedings of the 13th ACM conference on Computer and communications security, pages 144-153, New York, NY, USA, 2006. ACM.
18. D. Zhang, K. Ramamohanarao, and T. Ebringer. Role engineering using graph optimisation. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, pages 139-144, New York, NY, USA, 2007. ACM.
19. D. Zhang, K. Ramamohanarao, and R. Zhang. Synthetic data generation for study of role engineering. http://www.cs.mu.oz.au/-zhangd/roledata, 2008.