Evolving role definitions through permission invocation patterns

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2013, Pages 37-47

  Zhang, Wen ^a   Chen, You ^b   Gunter, Carl A ^c   Liebovitz, David ^d   Malin, Bradley ^b  

^a VANDERBILT UNIVERSITY   (United States)

^b VANDERBILT UNIVERSITY MEDICAL CENTER   (United States)

^c University of Illinois at Urbana Champaign   (United States)

^d NORTHWESTERN UNIVERSITY   (United States)

Author keywords

Audit logs; Role mining; Role based access control

Indexed keywords

ACADEMIC MEDICAL CENTERS; AUDIT LOGS; DATA MINING METHODS; ELECTRONIC MEDICAL RECORD SYSTEM; OBJECTIVE FUNCTIONS; ROLE MININGS; ROLE-BASED ACCESS CONTROL; SIMILARITY MEASURE;

ALGORITHMS; BEHAVIORAL RESEARCH; DATA MINING; MEDICAL COMPUTING; STATISTICS;

ACCESS CONTROL;

EID: 84883063291     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2462410.2462422     Document Type: Conference Paper

References (26)

1. st ACSAC, pages 170-182, 2003.
2. C.-C. Chang and C.-J. Lin. LIBSVM: A library for support vector machines. ACM Transactions on Intelligent Systems and Technology, 2:27, 2011.
3. V. Chvatal. A greedy heuristic for the set-covering problem. Mathematics of Operations Research, 4:233-235, 1979.
4. A. Colantonio, R. D. Pietro, A. Ocello, and N. V. Verde. A new role mining framework to elicit business roles and to mitigate enterprise risk. Decision Support Systems, 50:715-731, 2011.
5. st ACM Workshop on Role-Based Access Control, 1995.
6. E. Eskin, A. Arnold, M. Prerau, L. Portnoy, and S. Stolfo. A geometric framework for unsupervised anomaly detection: Detecting intrusions in unlabeled data. In Proceedings of Applications of Data Mining in Computer Security, pages 78-100. Kluwer, 2002.
7. L. Freeman, A. Romney, and S. Freeman. Cognitive structure and informant accuracy. American Anthropologist, 89:310-325, 1987.
8. M. R. Garey and D. S. Johnson. Computers and Intractability; A Guide to the Theory of NP-Completeness. W.H. Freeman and Company, New York, NY, 1990.
9. th International Conference on the World Wide Web, pages 432-442, 2002.
10. C. W. Hsu, C. C. Chang, and C. J. Lin. A practical guide to support vector classification. Technical report, Dept. of Computer Science and Information Engineering, National Taiwan University, Taipei, Taiwan, 2003.
11. L. M. Manevitz and M. Yousef. One-class SVMs for document classification. The Journal of Machine Learning Research, 2:139-154, 2002.
12. S. Mehrotra, C. Butts, D. V. Kalashnikov, N. Venkatasubramanian, R. Rao, and et al. Project RESCUE: challenges in responding to the unexpected. In Proceedings of SPIE, volume 5304, pages 179-192, 2004.
13. th ACM Symposium on Access Control Models and Technologies, pages 45-56, 2012.
14. th IEEE International Performance, Computing, and Communications Conference, pages 470-476, 2006.
15. th ACM Workshop on Role-Based Access Control, pages 103-110, 2000.
16. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control models. IEEE Computer, 29:38-47, 1996.
17. th ACM Symposium on Access Control Models and Technologies, pages 3-9, 2001.
18. th ACM Symposium on Access Control Models and Technologies, pages 168-176, 2005.
19. B. Scholkopf, J. Platt, J. Shawe-Taylor, A. Smola, and R. Williamson. Estimating the support of a high-dimensional distribution. Neural Computation, 13(7):1443-1471, 2001.
20. th ACM Symposium on Access Control Models and Technologies, pages 169-178, 2003.
21. M. Strembeck. Scenario-driven role engineering. IEEE Security and Privacy Magazine, 8:28-35, 2010.
22. th ACM Conference on Computer and Communications Security, pages 144-153, 2006.
23. J. Vaidya, V. Atluri, and Q. Guo. The role mining problem: A formal perspective. ACM Transactions on Information and System Security, 13:27, 2010.
24. th ACM symposium on Access Control Models and Technologies, pages 11-20, 2008.
25. th VLDB Workshop on Secure Data Management, pages 33-48, 2009.
26. th ACM Symposium on Access Control Models and Technologies, pages 139-144, 2007.