RoleVAT: Visual Assessment of Practical Need for Role Based Access Control

A
ACSAC
2009
2009 Annual Computer Security Applications Conference
Abstract - RoleVAT: Visual Assessment of Practical Need for Role Based Access Control

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Dana Zhang Articles by Kotagiri Ramamohanarao Articles by Steven Versteeg Articles by Rui Zhang

2009 Annual Computer Security Applications Conference

Honolulu, Hawaii

December 07-December 11

ISBN: 978-0-7695-3919-5

	ASCII Text	x
	Dana Zhang, Kotagiri Ramamohanarao, Steven Versteeg, Rui Zhang, "RoleVAT: Visual Assessment of Practical Need for Role Based Access Control," Computer Security Applications Conference, Annual, pp. 13-22, 2009 Annual Computer Security Applications Conference, 2009.

	BibTex	x
	@article{ 10.1109/ACSAC.2009.11, author = {Dana Zhang and Kotagiri Ramamohanarao and Steven Versteeg and Rui Zhang}, title = {RoleVAT: Visual Assessment of Practical Need for Role Based Access Control}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2009}, issn = {1063-9527}, pages = {13-22}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2009.11}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - RoleVAT: Visual Assessment of Practical Need for Role Based Access Control SN - 1063-9527 SP13 EP22 A1 - Dana Zhang, A1 - Kotagiri Ramamohanarao, A1 - Steven Versteeg, A1 - Rui Zhang, PY - 2009 KW - role based access control KW - role engineering KW - role mining KW - data mining KW - clustering KW - cluster tendency analysis VL - 0 JA - Computer Security Applications Conference, Annual ER -

Dana Zhang

Kotagiri Ramamohanarao

Steven Versteeg

Rui Zhang

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2009.11

Role based access control (RBAC) is a powerful security administration concept that can simplify permission assignment management. Migration to and maintenance of RBAC requires role engineering, the identification of a set of roles that offer administrative benefit. However, establishing that RBAC is desirable in a given enterprise is lacking in current role engineering processes. To help identify the practical need for RBAC, we propose RoleVAT, a Role engineering tool for the Visual Assessment of user and permission Tendencies. User and permission clusters can be visually identified as potential user groups or roles. The benefit and impact of this visual analysis in enterprise environments is discussed and demonstrated through testing on real life as well as synthetic datasets. Our experimental results show the effectiveness of RoleVAT as well as interesting user and role tendencies in real enterprise environments.

Index Terms:

role based access control, role engineering, role mining, data mining, clustering, cluster tendency analysis

Citation:

Dana Zhang, Kotagiri Ramamohanarao, Steven Versteeg, Rui Zhang, "RoleVAT: Visual Assessment of Practical Need for Role Based Access Control," acsac, pp.13-22, 2009 Annual Computer Security Applications Conference, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.