Skip to Main content Skip to Navigation
Conference papers

Towards Adaptive Access Control

Abstract : Access control systems are nowadays the first line of defence of modern IT systems. However, their effectiveness is often compromised by policy miscofigurations that can be exploited by insider threats. In this paper, we present an approach based on machine learning to refine attribute-based access control policies in order to reduce the risks of users abusing their privileges. Our approach exploits behavioral patterns representing how users typically access resources to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.
Document type :
Conference papers
Complete list of metadata

Cited literature [20 references]  Display  Hide  Download

https://hal.inria.fr/hal-01954403
Contributor : Hal Ifip <>
Submitted on : Thursday, December 13, 2018 - 4:03:26 PM
Last modification on : Saturday, June 8, 2019 - 2:20:04 PM
Long-term archiving on: : Thursday, March 14, 2019 - 3:40:47 PM

File

470961_1_En_7_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Luciano Argento, Andrea Margheri, Federica Paci, Vladimiro Sassone, Nicola Zannone. Towards Adaptive Access Control. 32th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2018, Bergamo, Italy. pp.99-109, ⟨10.1007/978-3-319-95729-6_7⟩. ⟨hal-01954403⟩

Share

Metrics

Record views

87

Files downloads

9