Clustering-based approach for anomaly detection in XACML policies

TitreClustering-based approach for anomaly detection in XACML policies
Publication TypeConference Paper
Year of Publication2017
AuthorsHadj, MAEl, Ayache, M, Benkaouz, Y, Khoumsi, A, Erradi, M
Conference NameICETE 2017 - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications
Abstract

The development of distributed applications arises multiple security issues such as access control. Attribute-Based Access Control has been proposed as a generic access control model, which provides more flexibility and promotes information and security sharing. eXtensible Access Control Markup Language (XACML) is the most convenient way to express ABAC policies. However, in distributed environments, XACML policies become more complex and hard to manage. In fact, an XACML policy in distributed applications may be aggregated from multiple parties and can be managed by more than one administrator. Therefore, it may contain several anomalies such as conflicts and redundancies, which may affect the performance of the policy execution. In this paper, we propose an anomaly detection method based on the decomposition of a policy into clusters before searching anomalies within each cluster. Our evaluation results demonstrate the efficiency of the suggested approach. Copyright © 2017 by SCITEPRESS - Science and Technology Publications, Lda. All rights reserved.

URLhttps://www.scopus.com/inward/record.uri?eid=2-s2.0-85029414026&partnerID=40&md5=133521fca6a95f8238cfc3b777dd3534
Revues: 

Partenaires

Localisation


Location map

Suivez-nous sur

  

Contactez-nous

ENSIAS

Avenue Mohammed Ben Abdallah Regragui, Madinat Al Irfane, BP 713, Agdal Rabat, Maroc

Résultat de recherche d'images pour "icone fax" Télécopie : (+212) 5 37 77 72 30

    Compteur de visiteurs:282,964
    Education - This is a contributing Drupal Theme
    Design by WeebPal.