Towards an adaptive multi-level RBAC mechanism for countering insider misuse

Shuo Liu; Xiling Luo; Jun Zhang; Ming Qi

doi:10.1109/ICMSS.2009.5303721

Towards an adaptive multi-level RBAC mechanism for countering insider misuse

Shuo Liu^*, Xiling Luo, Jun Zhang, Ming Qi

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

This paper proposes an extended RBAC model for countering insider misuse, which provides scalability and flexibility. Multi-level security and context-awareness are introduced into the model to fit in with the particular appliance. A mechanism for insider misuse prevention is presented based on the model. To detect and prevent insider misbehavior, the insider's behavior pattern is analyzed and the probability of misuse is estimated, based on the enforced prevention policies. As a proof, finally an experimental verification is carried out based on the approach.

Original language	English
Title of host publication	Proceedings - International Conference on Management and Service Science, MASS 2009
DOIs	https://doi.org/10.1109/ICMSS.2009.5303721
Publication status	Published - 2009
Externally published	Yes
Event	International Conference on Management and Service Science, MASS 2009 - Wuhan, China Duration: 20 Sept 2009 → 22 Sept 2009

Publication series

Name	Proceedings - International Conference on Management and Service Science, MASS 2009

Conference

Conference	International Conference on Management and Service Science, MASS 2009
Country/Territory	China
City	Wuhan
Period	20/09/09 → 22/09/09

Keywords

Access control
Adaptive
Insider misuse
Multi-level security

Access to Document

10.1109/ICMSS.2009.5303721

Cite this

@inproceedings{54a2bbee89f3446a9d8c951f33c6125d,

title = "Towards an adaptive multi-level RBAC mechanism for countering insider misuse",

abstract = "This paper proposes an extended RBAC model for countering insider misuse, which provides scalability and flexibility. Multi-level security and context-awareness are introduced into the model to fit in with the particular appliance. A mechanism for insider misuse prevention is presented based on the model. To detect and prevent insider misbehavior, the insider's behavior pattern is analyzed and the probability of misuse is estimated, based on the enforced prevention policies. As a proof, finally an experimental verification is carried out based on the approach.",

keywords = "Access control, Adaptive, Insider misuse, Multi-level security",

author = "Shuo Liu and Xiling Luo and Jun Zhang and Ming Qi",

year = "2009",

doi = "10.1109/ICMSS.2009.5303721",

language = "English",

isbn = "9781424446391",

series = "Proceedings - International Conference on Management and Service Science, MASS 2009",

booktitle = "Proceedings - International Conference on Management and Service Science, MASS 2009",

note = "International Conference on Management and Service Science, MASS 2009 ; Conference date: 20-09-2009 Through 22-09-2009",

}

Liu, S, Luo, X, Zhang, J & Qi, M 2009, Towards an adaptive multi-level RBAC mechanism for countering insider misuse. in Proceedings - International Conference on Management and Service Science, MASS 2009., 5303721, Proceedings - International Conference on Management and Service Science, MASS 2009, International Conference on Management and Service Science, MASS 2009, Wuhan, China, 20/09/09. https://doi.org/10.1109/ICMSS.2009.5303721

Towards an adaptive multi-level RBAC mechanism for countering insider misuse. / Liu, Shuo; Luo, Xiling; Zhang, Jun et al.
Proceedings - International Conference on Management and Service Science, MASS 2009. 2009. 5303721 (Proceedings - International Conference on Management and Service Science, MASS 2009).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Towards an adaptive multi-level RBAC mechanism for countering insider misuse

AU - Liu, Shuo

AU - Luo, Xiling

AU - Zhang, Jun

AU - Qi, Ming

PY - 2009

Y1 - 2009

N2 - This paper proposes an extended RBAC model for countering insider misuse, which provides scalability and flexibility. Multi-level security and context-awareness are introduced into the model to fit in with the particular appliance. A mechanism for insider misuse prevention is presented based on the model. To detect and prevent insider misbehavior, the insider's behavior pattern is analyzed and the probability of misuse is estimated, based on the enforced prevention policies. As a proof, finally an experimental verification is carried out based on the approach.

AB - This paper proposes an extended RBAC model for countering insider misuse, which provides scalability and flexibility. Multi-level security and context-awareness are introduced into the model to fit in with the particular appliance. A mechanism for insider misuse prevention is presented based on the model. To detect and prevent insider misbehavior, the insider's behavior pattern is analyzed and the probability of misuse is estimated, based on the enforced prevention policies. As a proof, finally an experimental verification is carried out based on the approach.

KW - Access control

KW - Adaptive

KW - Insider misuse

KW - Multi-level security

UR - http://www.scopus.com/inward/record.url?scp=73849115334&partnerID=8YFLogxK

U2 - 10.1109/ICMSS.2009.5303721

DO - 10.1109/ICMSS.2009.5303721

M3 - Conference contribution

AN - SCOPUS:73849115334

SN - 9781424446391

T3 - Proceedings - International Conference on Management and Service Science, MASS 2009

BT - Proceedings - International Conference on Management and Service Science, MASS 2009

T2 - International Conference on Management and Service Science, MASS 2009

Y2 - 20 September 2009 through 22 September 2009

ER -

Towards an adaptive multi-level RBAC mechanism for countering insider misuse

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this