Data and applications security and privacy XXXVIII : 38th Annual IFIP WG 11.3 Conference, DBSec 2024, San Jose, CA, USA, July 15-17, 2024, Proceedings. Annual IFIP WG 11.3 Working Conference on Data and Applications Security (38th : 202...最新文献

筛选

英文中文

A Graph-based Framework for ABAC Policy Enforcement and Analysis.

Data and applications security and privacy XXXVIII : 38th Annual IFIP WG 11.3 Conference, DBSec 2024, San Jose, CA, USA, July 15-17, 2024, Proceedings. Annual IFIP WG 11.3 Working Conference on Data and Applications Security (38th : 202... Pub Date : 2024-07-01 Epub Date: 2024-07-13 DOI: 10.1007/978-3-031-65172-4_1

Mian Yang, Vijayalakshmi Atluri, Shamik Sural, Jaideep Vaidya

{"title":"A Graph-based Framework for ABAC Policy Enforcement and Analysis.","authors":"Mian Yang, Vijayalakshmi Atluri, Shamik Sural, Jaideep Vaidya","doi":"10.1007/978-3-031-65172-4_1","DOIUrl":"10.1007/978-3-031-65172-4_1","url":null,"abstract":"<p><p>In the realm of access control mechanisms, Attribute-Based Access Control (ABAC) stands out for its dynamic and fine-grained approach, enabling permissions to be allocated based on attributes of subjects, objects, and the environment. This paper introduces a graph model for ABAC, named <math> <msub><mrow><mi>G</mi></mrow> <mrow><mi>A</mi> <mi>B</mi> <mi>A</mi> <mi>C</mi></mrow> </msub> </math> . The <math> <msub><mrow><mi>G</mi></mrow> <mrow><mi>A</mi> <mi>B</mi> <mi>A</mi> <mi>C</mi></mrow> </msub> </math> leverages directional flow capacities to enforce access control policies, mapping the potential pathways between a subject and an object to ascertain access rights. Furthermore, graph based modeling of ABAC enables the utilization of readily available commercial graph database systems to implement ABAC. As a result, enforcement and analyses of ABAC can be accomplished simply through graph queries. In particular, we demonstrate this using the Neo4j graph database and present the performance of executing enforcement and different analyses queries.</p>","PeriodicalId":520399,"journal":{"name":"Data and applications security and privacy XXXVIII : 38th Annual IFIP WG 11.3 Conference, DBSec 2024, San Jose, CA, USA, July 15-17, 2024, Proceedings. Annual IFIP WG 11.3 Working Conference on Data and Applications Security (38th : 202...","volume":"14901 ","pages":"3-23"},"PeriodicalIF":0.0,"publicationDate":"2024-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC11771151/pdf/","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"143054665","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"OA","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

引用次数: 0