Proposed Model for Natural Language ABAC Authoring

ABAC '17 Pub Date : 2017-03-24 DOI:10.1145/3041048.3041054

Ronald C. Turner

{"title":"Proposed Model for Natural Language ABAC Authoring","authors":"Ronald C. Turner","doi":"10.1145/3041048.3041054","DOIUrl":null,"url":null,"abstract":"Authorization policy authoring has required tools from the start. With access policy governance now an executive-level responsibility, it is imperative that such a tool expose the policy to business users' with little or no IT intervention-as natural language. NIST SP 800-162 [1] first prescribes natural language policies (NLPs) as the preferred expression of policy and then implicitly calls for automated translation of NLP to machine-executable code. This paper therefore proposes an interoperable model for the NLP's human expression. It furthermore documents the research and development of a tool set for end-to-end authoring and translation. This R&D journey-focusing constantly on end users' has debunked certain myths, has responded to steadily increasing market sophistication, has applied formal disciplines (e.g. ontologies, grammars and compiler design) and has motivated an informal demonstration of autonomic code generation. The lessons learned should be of practical value to the entire ABAC community. The research in progress' increasingly complex policies, proactive rule analytics, and expanded NLP authoring language support will require collaboration with an ever-expanding technical community from industry and academia.","PeriodicalId":349009,"journal":{"name":"ABAC '17","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-03-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"ABAC '17","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3041048.3041054","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

Authorization policy authoring has required tools from the start. With access policy governance now an executive-level responsibility, it is imperative that such a tool expose the policy to business users' with little or no IT intervention-as natural language. NIST SP 800-162 [1] first prescribes natural language policies (NLPs) as the preferred expression of policy and then implicitly calls for automated translation of NLP to machine-executable code. This paper therefore proposes an interoperable model for the NLP's human expression. It furthermore documents the research and development of a tool set for end-to-end authoring and translation. This R&D journey-focusing constantly on end users' has debunked certain myths, has responded to steadily increasing market sophistication, has applied formal disciplines (e.g. ontologies, grammars and compiler design) and has motivated an informal demonstration of autonomic code generation. The lessons learned should be of practical value to the entire ABAC community. The research in progress' increasingly complex policies, proactive rule analytics, and expanded NLP authoring language support will require collaboration with an ever-expanding technical community from industry and academia.

查看原文本刊更多论文

自然语言ABAC创作的建议模型

授权策略编写从一开始就需要工具。由于访问策略治理现在是执行层的职责，因此这种工具必须以自然语言的形式，在很少或没有it干预的情况下，将策略公开给业务用户。NIST SP 800-162[1]首先规定自然语言策略(NLP)作为策略的首选表达，然后隐式地要求将NLP自动翻译为机器可执行的代码。因此，本文为NLP的人类表达提出了一个可互操作的模型。它进一步记录了端到端创作和翻译工具集的研究和开发。这一研发之旅——持续关注最终用户——揭穿了某些神话，回应了稳步增长的市场复杂性，应用了正式的学科(例如本体论、语法和编译器设计)，并激发了自主代码生成的非正式演示。吸取的经验教训应该对整个ABAC社区具有实用价值。正在进行的研究——日益复杂的政策、积极的规则分析和扩展的NLP创作语言支持——将需要与来自工业界和学术界不断扩大的技术社区进行合作。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ABAC '17

自引率

0.00%

发文量