Barron, Jason and Davy, Steven (2013) Semantic web technologies to aid dominance detection for access control policies. In: Proceedings of the 2013 IFIP/IEEE International Symposium on Integrated Network Management, IM 2013 :. Proceedings of the 2013 IFIP/IEEE International Symposium on Integrated Network Management, IM 2013 . UNSPECIFIED, BEL, pp. 780-783. ISBN 9783901882517
Full text not available from this repository. (Request a copy)Abstract
We present a dominance detection algorithm as part of a policy authoring process that makes extensive use of semantic models to perform a novel dominance detection of access control policies, where groups of deployed policies are considered in unison to discover redundancy. The approach is targeted towards the pre-deployment stage of the policy authoring process and aims to help prevent the introduction of redundant policies into the system. To achieve this, semantic queries are executed over instances of new and deployed policy elements in order to select matching elements for further analysis. The semantic queries may return a large number of deployed policy elements so we present an algorithm that prunes the search space to reduce the problem size. We show that for large sets of deployed policies, we can discover relatively large sets that are considered dominant.
Item Type: | Book Section |
---|---|
Uncontrolled Keywords: | /dk/atira/pure/subjectarea/asjc/1700/1705 |
Departments or Groups: | |
Depositing User: | Admin SSL |
Date Deposited: | 19 Oct 2022 23:16 |
Last Modified: | 16 Jun 2023 02:35 |
URI: | http://repository-testing.wit.ie/id/eprint/5004 |
Actions (login required)
View Item |