Toward mining of temporal roles

Authors:
Barsha Mitra;Shamik Sural;Vijayalakshmi Atluri;Jaideep Vaidya
Affiliations:
School of Information Technology, IIT Kharagpur, India;School of Information Technology, IIT Kharagpur, India;National Science Foundation and MSIS Department, Rutgers University;MSIS Department, Rutgers University
Venue:
DBSec'13 Proceedings of the 27th international conference on Data and Applications Security and Privacy XXVII
Year:
2013

Citing 17
Cited 0

Role-Based Access Control Models

Computer
Role engineering

RBAC '95 Proceedings of the first ACM Workshop on Role-based access control
Process-oriented approach for role-finding to implement role-based security administration in a large industrial organization

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
TRBAC: A temporal role-based access control model

ACM Transactions on Information and System Security (TISSEC)
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
A Generalized Temporal Role-Based Access Control Model

IEEE Transactions on Knowledge and Data Engineering
RoleMiner: mining roles using subset enumeration

Proceedings of the 13th ACM conference on Computer and communications security
The role mining problem: finding a minimal descriptive set of roles

Proceedings of the 12th ACM symposium on Access control models and technologies
Fast exact and heuristic methods for role minimization problems

Proceedings of the 13th ACM symposium on Access control models and technologies
Optimal Boolean Matrix Decomposition: Application to Role Engineering

ICDE '08 Proceedings of the 2008 IEEE 24th International Conference on Data Engineering
The role mining problem: A formal perspective

ACM Transactions on Information and System Security (TISSEC)
Mining roles with noisy data

Proceedings of the 15th ACM symposium on Access control models and technologies
Role mining based on weights

Proceedings of the 15th ACM symposium on Access control models and technologies
Mining Roles with Multiple Objectives

ACM Transactions on Information and System Security (TISSEC)
Role engineering: from theory to practice

Proceedings of the second ACM conference on Data and Application Security and Privacy
Visual Role Mining: A Picture Is Worth a Thousand Roles

IEEE Transactions on Knowledge and Data Engineering
Algorithms for mining meaningful roles

Proceedings of the 17th ACM symposium on Access Control Models and Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

In Role-Based Access Control (RBAC), users acquire permissions through their assigned roles. Role mining, the process of finding a set of roles from direct user-permission assignments, is essential for successful implementation of RBAC. In many organizations it is often required that users are given permissions that can vary with time. To handle such requirements, temporal extensions of RBAC like Temporal-RBAC (TRBAC) and Generalized Temporal Role-Based Access Control (GTRBAC) have been proposed. Existing role mining techniques, however, cannot be used to process the temporal element associated with roles in these models. In this paper, we propose a method for mining roles in the context of TRBAC. First we formally define the Temporal Role Mining Problem (TRMP), and then show that the TRMP problem is NP-complete and present a heuristic approach for solving it.