Article

RoleVAT: Visual Assessment of Practical Need for Role Based Access Control

Authors:

Dana Zhang,

Kotagiri Ramamohanarao,

Steven Versteeg,

Rui ZhangAuthors Info & Claims

ACSAC '09: Proceedings of the 2009 Annual Computer Security Applications Conference

Pages 13 - 22

https://doi.org/10.1109/ACSAC.2009.11

Published: 07 December 2009 Publication History

Publisher Site

Abstract

Role based access control (RBAC) is a powerful security administration concept that can simplify permission assignment management. Migration to and maintenance of RBAC requires role engineering, the identification of a set of roles that offer administrative benefit. However, establishing that RBAC is desirable in a given enterprise is lacking in current role engineering processes. To help identify the practical need for RBAC, we propose RoleVAT, a Role engineering tool for the Visual Assessment of user and permission Tendencies. User and permission clusters can be visually identified as potential user groups or roles. The benefit and impact of this visual analysis in enterprise environments is discussed and demonstrated through testing on real life as well as synthetic datasets. Our experimental results show the effectiveness of RoleVAT as well as interesting user and role tendencies in real enterprise environments.

Cited By

View all

Mitra BSural SVaidya JAtluri V(2016)A Survey of Role MiningACM Computing Surveys10.1145/287114848:4(1-37)Online publication date: 22-Feb-2016
https://dl.acm.org/doi/10.1145/2871148
Leitner MRinderle-Ma SOsborn STripunitara MMolloy I(2014)Anomaly detection and visualization in generative RBAC modelsProceedings of the 19th ACM symposium on Access control models and technologies10.1145/2613087.2613105(41-52)Online publication date: 25-Jun-2014
https://dl.acm.org/doi/10.1145/2613087.2613105
Garrison WLee AHinrichs TOsborn STripunitara MMolloy I(2014)An actor-based, application-aware access control evaluation frameworkProceedings of the 19th ACM symposium on Access control models and technologies10.1145/2613087.2613099(199-210)Online publication date: 25-Jun-2014
https://dl.acm.org/doi/10.1145/2613087.2613099
Show More Cited By

Index Terms

RoleVAT: Visual Assessment of Practical Need for Role Based Access Control
1. Security and privacy

Index terms have been assigned to the content through auto-classification.

Recommendations

Role mining with ORCA
SACMAT '05: Proceedings of the tenth ACM symposium on Access control models and technologies

With continuously growing numbers of applications, enterprises face the problem of efficiently managing the assignment of access permissions to their users. On the one hand, security demands a tight regime on permissions; on the other hand, users need ...
Edge-RMP: Minimizing administrative assignments for role-based access control

Because of its ease of administration, role-based access control (RBAC) has become the norm to enforcing security in most of today's organizations. For implementing RBAC, it is important to devise a complete and correct set of roles. This task, known as ...
Mining RBAC roles under cardinality constraint
ICISS'10: Proceedings of the 6th international conference on Information systems security

Role Based Access Control (RBAC) is an effective way of managing permissions assigned to a large number of users in an enterprise. In order to deploy RBAC, a complete and correct set of roles needs to be identified from the existing user permission ...

Comments

Information & Contributors

Information

Published In

ACSAC '09: Proceedings of the 2009 Annual Computer Security Applications Conference

December 2009

492 pages

ISBN:9780769539195

Publisher

IEEE Computer Society

United States

Publication History

Published: 07 December 2009

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 22 Sep 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Mitra BSural SVaidya JAtluri V(2016)A Survey of Role MiningACM Computing Surveys10.1145/287114848:4(1-37)Online publication date: 22-Feb-2016
https://dl.acm.org/doi/10.1145/2871148
Leitner MRinderle-Ma SOsborn STripunitara MMolloy I(2014)Anomaly detection and visualization in generative RBAC modelsProceedings of the 19th ACM symposium on Access control models and technologies10.1145/2613087.2613105(41-52)Online publication date: 25-Jun-2014
https://dl.acm.org/doi/10.1145/2613087.2613105
Garrison WLee AHinrichs TOsborn STripunitara MMolloy I(2014)An actor-based, application-aware access control evaluation frameworkProceedings of the 19th ACM symposium on Access control models and technologies10.1145/2613087.2613099(199-210)Online publication date: 25-Jun-2014
https://dl.acm.org/doi/10.1145/2613087.2613099
Garrison WQiao YLee ABertino ESandhu RPark J(2014)On the suitability of dissemination-centric access control systems for group-centric sharingProceedings of the 4th ACM conference on Data and application security and privacy10.1145/2557547.2557566(1-12)Online publication date: 3-Mar-2014
https://dl.acm.org/doi/10.1145/2557547.2557566
Komlenovic MTripunitara MZitouni TSandhu RBertino E(2011)An empirical assessment of approaches to distributed enforcement in role-based access control (RBAC)Proceedings of the first ACM conference on Data and application security and privacy10.1145/1943513.1943530(121-132)Online publication date: 21-Feb-2011
https://dl.acm.org/doi/10.1145/1943513.1943530
Frank MBuhmann JBasin DJoshi JCarminati B(2010)On the definition of role miningProceedings of the 15th ACM symposium on Access control models and technologies10.1145/1809842.1809851(35-44)Online publication date: 9-Jun-2010
https://dl.acm.org/doi/10.1145/1809842.1809851

Abstract

Cited By

Index Terms

Recommendations

Role mining with ORCA

Edge-RMP: Minimizing administrative assignments for role-based access control

Mining RBAC roles under cardinality constraint

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations