Using the graph-theoretic approach to solving the Role Mining problem

2018 Dynamics of Systems, Mechanisms and Machines (Dynamics) Pub Date : 2018-11-01 DOI:10.1109/DYNAMICS.2018.8601487

S. Belim, A. N. Mironenko

{"title":"Using the graph-theoretic approach to solving the Role Mining problem","authors":"S. Belim, A. N. Mironenko","doi":"10.1109/DYNAMICS.2018.8601487","DOIUrl":null,"url":null,"abstract":"The problem of Roles Mining is to build a role-based security policy for large information systems based on an analysis of the set of allowed user permissions. The article presents an algorithm for analyzing the matrix of authorized user permissions for optimal role formation. A set of permissions for an individual user is treated as a transaction. As a transaction record, used authority to act on the system. After that, the algorithm of searching for associative rules for the set of authorities is applied. Only associative rules are considered, including one power as a prerequisite and one as a consequence. A graph of the relationship of authority in the given system is being constructed. This graph is oriented weighted. The weight of the arc is determined by the support of the corresponding associative rule. For the graph constructed, clustering is performed using the community search algorithm. A hierarchy of communities is being built. Powers unite in roles if they are part of the same community. The hierarchy of communities defines the hierarchy of roles. The proposed algorithm can be used both for building a role-based security policy, and for optimizing an already existing role hierarchy.","PeriodicalId":394567,"journal":{"name":"2018 Dynamics of Systems, Mechanisms and Machines (Dynamics)","volume":"69 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 Dynamics of Systems, Mechanisms and Machines (Dynamics)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DYNAMICS.2018.8601487","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

The problem of Roles Mining is to build a role-based security policy for large information systems based on an analysis of the set of allowed user permissions. The article presents an algorithm for analyzing the matrix of authorized user permissions for optimal role formation. A set of permissions for an individual user is treated as a transaction. As a transaction record, used authority to act on the system. After that, the algorithm of searching for associative rules for the set of authorities is applied. Only associative rules are considered, including one power as a prerequisite and one as a consequence. A graph of the relationship of authority in the given system is being constructed. This graph is oriented weighted. The weight of the arc is determined by the support of the corresponding associative rule. For the graph constructed, clustering is performed using the community search algorithm. A hierarchy of communities is being built. Powers unite in roles if they are part of the same community. The hierarchy of communities defines the hierarchy of roles. The proposed algorithm can be used both for building a role-based security policy, and for optimizing an already existing role hierarchy.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

利用图论方法解决角色挖掘问题

角色挖掘的问题是在分析允许的用户权限集的基础上，为大型信息系统构建基于角色的安全策略。本文提出了一种分析授权用户权限矩阵的算法，用于优化角色的形成。单个用户的一组权限被视为事务。作为事务记录，使用权限对系统进行操作。然后，对授权集进行关联规则搜索算法。只考虑关联规则，包括一个幂作为先决条件和一个幂作为结果。正在构造给定系统中的权力关系图。这个图是有向加权的。弧的权值由相应关联规则的支持度决定。对于构建的图，使用社区搜索算法进行聚类。社区的等级制度正在建立。如果权力是同一个共同体的一部分，它们的角色就会统一。社区的层次结构定义了角色的层次结构。所提出的算法既可用于构建基于角色的安全策略，也可用于优化已有的角色层次结构。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2018 Dynamics of Systems, Mechanisms and Machines (Dynamics)

自引率

0.00%

发文量