Spectral-clustering-based abnormal permission assignments hunting framework

Liang FANG; Li-hua YIN; Feng-hua LI; Bin-xing FANG

Tongxin xuebao (Dec 2017)

Spectral-clustering-based abnormal permission assignments hunting framework

Liang FANG,
Li-hua YIN,
Feng-hua LI,
Bin-xing FANG

Affiliations

Liang FANG
Li-hua YIN
Feng-hua LI
Bin-xing FANG

Journal volume & issue: Vol. 38
pp. 63 – 72

Abstract

Read online

Migrating traditional access control,such as mandatory and discretionary access control,into role-based access control(RBAC)lightens a practical way to improve the user-permission management efficiency.To guarantee the security of RBAC system,it is important to generate proper roles during the migration.However,abnormal user-permission configurations lead to wrong roles and cause tremendous security risks.To hunt the potential abnormal user-permission configurations,a novel spectral clustering based abnormal configuration hunting framework was proposed and recommendations were given to correct these configurations.Experimental results show its performance over existing solutions.

access control;abnormal configurations;spectral clustering

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords