Abstract

Attribute-based access control (ABAC) needs a large number of policies to function by using attributes of visitors, resources, environmental conditions, etc. Efficient policy administration is vital for implementation of ABAC models. In this paper, an ontology-based approach is proposed to build up an ABAC model, which is named as an ontology-based ABAC model, OABACM. Underlying relationships among things such as attributes hierarchies in OABACM are identified and described in OABACM, which if treated improperly can directly lead to problems in policy administration. In addition, policy representation and reasoning mechanism are discussed within OABACM and inherent logical properties of this model are formalised in rules. With proper reasoners, these properties can be utilised to logically improve access policy administration by reducing policy redundancy and detecting policy conflicts. In experiments, a sample ontology is created and several enterprise access examples are tested upon OABACM, which validates the effects of our model on policy administration.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Presentation 9. Attribute assurance for attribute based access control
Art Friedman ... Vincent C Hu
-
Art Friedman, et. al.Art Friedman ... Vincent C Hu
01 May 2014
Modeling and Recognizing Policy Conflicts with Resource Access Requests on Protected Health Information
Raik Kuhlisch
Complex Systems Informatics and Modeling Quarterly | VOL. 11
Raik KuhlischRaik Kuhlisch
31 Jul 2017
Guide to Attribute Based Access Control (ABAC) Definition and Considerations
Vincent C Hu ... Karen Scarfone
-
Vincent C Hu, et. al.Vincent C Hu ... Karen Scarfone
01 Jan 2014
A System for Centralized ABAC Policy Administration and Local ABAC Policy Decision and Enforcement in Host Systems using Access Control Lists
David Ferraiolo ... Gopi Katwala
-
David Ferraiolo, et. al.David Ferraiolo ... Gopi Katwala
14 Mar 2018
View more papers

More From: International Journal of Information and Computer Security

Paper Title
Journal
Date
Author
A taxonomy of DDoS attacks and its impact on Docker architecture
Sushant Chamoli ... Varsha Mittal
International Journal of Information and Computer Security | VOL. 23
Sushant Chamoli, et. al.Sushant Chamoli ... Varsha Mittal
01 Jan 2024
Machine Learning and Deep Learning Techniques for Detecting and Mitigating Cyber Threats in IoT-Enabled Smart Grids: A Comprehensive Review
Siddharth Chauhan ... Kamlesh Dutta
International Journal of Information and Computer Security | VOL. 1
Siddharth Chauhan, et. al.Siddharth Chauhan ... Kamlesh Dutta
01 Jan 2024
Machine learning and deep learning techniques for detecting and mitigating cyber threats in IoT-enabled smart grids: a comprehensive review
Aschalew Tirulo ... Kamlesh Dutta
International Journal of Information and Computer Security | VOL. -
Aschalew Tirulo, et. al.Aschalew Tirulo ... Kamlesh Dutta
01 Jan 2024
Generating key-dependent involutory MDS matrices through permutations, direct exponentiation, and scalar multiplication
Hoang Dinh Linh ... Tran Thi Luong
International Journal of Information and Computer Security | VOL. 1
Hoang Dinh Linh, et. al.Hoang Dinh Linh ... Tran Thi Luong
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.