Access control systems are nowadays the first line of defence of modern IT systems. However, their effectiveness is often compromised by policy miscofigurations that can be exploited by insider threats. In this paper, we present an approach based on machine learning to refine attribute-based access control policies in order to reduce the risks of users abusing their privileges. Our approach exploits behavioral patterns representing how users typically access resources to narrow the permissions granted to users when anomalous behaviors are detected. The proposed solution has been implemented and its effectiveness has been experimentally evaluated using a synthetic dataset.</p
International audienceAttribute-based access control (ABAC) provides a high level of flexibility tha...
Abstract—Nowadays the majority of users are unable to properly configure security mechanisms mostly ...
Nowadays the majority of users are unable to properly configure security mechanisms mostly because t...
Access control systems are nowadays the first line of defence of modern IT systems. However, their e...
The paper presents an approach based on machine learning to refine attribute-based access control p...
The interest in attribute-based access control policies is increasingly growing due to their ability...
Despite protected by firewalls and network security systems, databases are vulnerable to attacks esp...
Attribute-based access control (ABAC) provides a high level of flexibility that promotes security an...
Attribute-based access control (ABAC) provides a high level of flexibility that promotes security an...
Abstract—Attribute-based access control (ABAC) provides a high level of flexibility that promotes se...
An increasing body of work has recognized the importance of exploiting machine learning (ML) advance...
Access-control policy misconfigurations that cause requests to be erroneously denied can result in w...
The interest in attribute-based access control policies is increasingly growing due to their ability...
Abstract—Role-based access control (RBAC) is very widely used but has notable limitations, prompting...
Summary The security of access and information flow carries with it the risk that resources will be ...
International audienceAttribute-based access control (ABAC) provides a high level of flexibility tha...
Abstract—Nowadays the majority of users are unable to properly configure security mechanisms mostly ...
Nowadays the majority of users are unable to properly configure security mechanisms mostly because t...
Access control systems are nowadays the first line of defence of modern IT systems. However, their e...
The paper presents an approach based on machine learning to refine attribute-based access control p...
The interest in attribute-based access control policies is increasingly growing due to their ability...
Despite protected by firewalls and network security systems, databases are vulnerable to attacks esp...
Attribute-based access control (ABAC) provides a high level of flexibility that promotes security an...
Attribute-based access control (ABAC) provides a high level of flexibility that promotes security an...
Abstract—Attribute-based access control (ABAC) provides a high level of flexibility that promotes se...
An increasing body of work has recognized the importance of exploiting machine learning (ML) advance...
Access-control policy misconfigurations that cause requests to be erroneously denied can result in w...
The interest in attribute-based access control policies is increasingly growing due to their ability...
Abstract—Role-based access control (RBAC) is very widely used but has notable limitations, prompting...
Summary The security of access and information flow carries with it the risk that resources will be ...
International audienceAttribute-based access control (ABAC) provides a high level of flexibility tha...
Abstract—Nowadays the majority of users are unable to properly configure security mechanisms mostly ...
Nowadays the majority of users are unable to properly configure security mechanisms mostly because t...