Open Access Open Access  Restricted Access Subscription Access

A Tool for Access Control Policy Validation

Muhammad Aqib,
Riaz Ahmed Shaikh,

Abstract


Inconsistency in access control policies exists when at least two rules present in the policy set lead to the contradictory decisions. It makes difficult for the system to decide which rule is applicable to the current scenario and hence make the system vulnerable to the unauthorized use. Various inconsistency detection methods have been proposed by researchers. However, those suffered from various limitations e.g., inefficient handling of numeric attributes, Boolean expressions etc. In this article, we propose a new algorithm that detects the inconsistencies in the policies using decision trees. For a proof of concept, we have developed a software tool that proves its effectiveness. Also, complexity analysis and qualitative comparison of the proposed algorithm is presented in the paper.

Citation Format:
Muhammad Aqib, Riaz Ahmed Shaikh, "A Tool for Access Control Policy Validation," Journal of Internet Technology, vol. 19, no. 1 , pp. 157-166, Jan. 2018.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.





Published by Executive Committee, Taiwan Academic Network, Ministry of Education, Taipei, Taiwan, R.O.C
JIT Editorial Office, Library and Information Center, National Dong Hwa University
No. 1, Sec. 2, Da Hsueh Rd. Shoufeng, Hualien 97401, Taiwan, R.O.C.
Tel: +886-3-931-7017  E-mail: jit.editorial@gmail.com