Synthesizing and analyzing attribute-based access control model generated from natural language policy statements
| dc.contributor.author | Abdelgawad, Mahmoud, author | |
| dc.contributor.author | Ray, Indrakshi, author | |
| dc.contributor.author | Alqurashi, Saja, author | |
| dc.contributor.author | Venkatesha, Videep, author | |
| dc.contributor.author | Shirazi, Hosein, author | |
| dc.contributor.author | ACM, publisher | |
| dc.date.accessioned | 2024-11-11T19:34:33Z | |
| dc.date.available | 2024-11-11T19:34:33Z | |
| dc.date.issued | 2023-05-24 | |
| dc.description.abstract | Access control policies (ACPs) are natural language statements that describe criteria under which users can access resources. We focus on constructing NIST Next Generation Access Control (NGAC) ABAC model from ACP statements. NGAC is more complex than RBAC or XACML ABAC as it supports dynamic, event-based policies, as well as prohibitions. We provide algorithms that use spaCy, a NLP library, to extract entities and relations from ACP sentences and convert them into the NGAC model. We then convert this NGAC model into Neo4j representation for the purpose of analysis. We apply the approach to various real-world ACP datasets to demonstrate the feasibility and assess scalability. We demonstrate that the approach is scalable and effectively extracts the NGAC ABAC model from large ACP datasets. We also show that redundancies and inconsistencies of ACP sentences are often found in unclean datasets. | |
| dc.format.medium | born digital | |
| dc.format.medium | articles | |
| dc.identifier.bibliographicCitation | Mahmoud Abdelgawad, Indrakshi Ray, Saja Alqurashi, Videep Venkatesha, and Hosein Shirazi. 2023. Synthesizing and Analyzing Attribute-Based Access Control Model Generated from Natural Language Policy Statements. In Proceedings of the 28th ACM Symposium on Access Control Models and Technologies (SACMAT '23), June 7–9, 2023, Trento, Italy. ACM, New York, NY, USA, 8 pages. https://doi.org/10.1145/3589608.3593844 | |
| dc.identifier.doi | https://doi.org/10.1145/3589608.3593844 | |
| dc.identifier.uri | https://hdl.handle.net/10217/239534 | |
| dc.language | English | |
| dc.language.iso | eng | |
| dc.publisher | Colorado State University. Libraries | |
| dc.relation.ispartof | Publications | |
| dc.relation.ispartof | ACM DL Digital Library | |
| dc.rights | © Mahmoud Abdelgawad, et al. | ACM 2023. This is the author's version of the work. It is posted here for your personal use. Not for redistribution. The definitive Version of Record was published in SACMAT '23, https://dx.doi.org/10.1145/3589608.3593844. | |
| dc.subject | cybersecurity | |
| dc.subject | attribute-based access control (ABAC) | |
| dc.subject | next generation access control (NGAC) | |
| dc.subject | natural language processing (NLP) | |
| dc.title | Synthesizing and analyzing attribute-based access control model generated from natural language policy statements | |
| dc.type | Text |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- FACF_ACMOA_3589608.3593844.pdf
- Size:
- 1.74 MB
- Format:
- Adobe Portable Document Format