A simple role mining algorithm

Authors:
Carlo Blundo;Stelvio Cimato
Affiliations:
Università degli Studi di Salerno, Fisciano (SA) - Italy;Università degli Studi di Milano, Crema (CR), Italy
Venue:
Proceedings of the 2010 ACM Symposium on Applied Computing
Year:
2010

Citing 11
Cited 1

Role engineering

RBAC '95 Proceedings of the first ACM Workshop on Role-based access control
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
RoleMiner: mining roles using subset enumeration

Proceedings of the 13th ACM conference on Computer and communications security
Identity Management Design Guide With IBM Tivoli Identity Manager

Identity Management Design Guide With IBM Tivoli Identity Manager
Role engineering using graph optimisation

Proceedings of the 12th ACM symposium on Access control models and technologies
The role mining problem: finding a minimal descriptive set of roles

Proceedings of the 12th ACM symposium on Access control models and technologies
Fast exact and heuristic methods for role minimization problems

Proceedings of the 13th ACM symposium on Access control models and technologies
Mining roles with semantic meanings

Proceedings of the 13th ACM symposium on Access control models and technologies
A class of probabilistic models for role engineering

Proceedings of the 15th ACM conference on Computer and communications security
The Role Hierarchy Mining Problem: Discovery of Optimal Role Hierarchies

ACSAC '08 Proceedings of the 2008 Annual Computer Security Applications Conference
Evaluating role mining algorithms

Proceedings of the 14th ACM symposium on Access control models and technologies

An empirical assessment of approaches to distributed enforcement in role-based access control (RBAC)

Proceedings of the first ACM conference on Data and application security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Complex organizations need to establish access control policies in order to manage access to restricted resources. Role Based Access Control paradigm has been introduced in '90 years aiming at simplifying the management of centralized access control. The definition of a good set of roles in order to match the organizational requirements of a company is a problem partially solved by role mining techniques, which return automatically a set of roles compatible with the permissions assigned to users. Unfortunately, the problem of finding an optimal role set has been proved to be NP-hard; so heuristics have been introduced in order to approximate the optimal solution. In this work we propose a novel heuristic and compare its results showing its efficiency and effectiveness.