A Risk Awareness Approach for Monitoring the Compliance of RBAC-based Policies

被引:0
|
作者
Jaidi, Faouzi [1 ]
Ayachi, Faten Labbene [1 ]
机构
[1] Higher Sch Commun Tunis SupCom, DSRU, Tunis, Tunisia
来源
2015 12TH INTERNATIONAL JOINT CONFERENCE ON E-BUSINESS AND TELECOMMUNICATIONS (ICETE), VOL 4 | 2015年
关键词
RBAC; Databases Security; Policy Compliance; Risk Awareness; Quantified Risk;
D O I
暂无
中图分类号
F [经济];
学科分类号
02 ;
摘要
The considerable increase of the risk associated to inner threats has motivated researches in risk assessment for access control systems. Two main approaches were adapted: (i) a risk mitigation approach via features such as constraints, and (ii) a risk quantification approach that manages access based on a quantified risk. Evaluating the risk associated to the evolutions of an access control policy is an important theme that allows monitoring the conformity of the policy in terms of risk. Unfortunately, no work has been defined in this context. We propose in this paper, a quantified risk-assessment approach for monitoring the compliance of concrete RBAC-based policies. We formalize the proposal and illustrate its application via a case of study.
引用
收藏
页码:454 / 459
页数:6
相关论文
共 50 条
  • [41] Structural health monitoring - a risk-based approach
    Colford, Barry R.
    Zhou, Ed
    Pape, Torill
    PROCEEDINGS OF THE INSTITUTION OF CIVIL ENGINEERS-BRIDGE ENGINEERING, 2022, 177 (02) : 89 - 98
  • [42] A risk-based monitoring approach to source data monitoring and documenting monitoring findings
    Brulotte, Maryse
    Alvey, Jessica S.
    Casper, T. Charles
    Cook, Lawrence J.
    Dwyer, Jamie P.
    VanBuren, John M.
    CONTEMPORARY CLINICAL TRIALS, 2024, 143
  • [43] The importance of default risk awareness in conducting monetary and fiscal policies
    Eiji Okano
    Masataka Eguchi
    Eurasian Economic Review, 2020, 10 : 361 - 392
  • [44] The importance of default risk awareness in conducting monetary and fiscal policies
    Okano, Eiji
    Eguchi, Masataka
    EURASIAN ECONOMIC REVIEW, 2020, 10 (03) : 361 - 392
  • [45] An approach for deploying and monitoring dynamic security policies
    Horcas, Jose-Miguel
    Pinto, Monica
    Fuentes, Lidia
    Mallouli, Wissam
    de Oca, Edgard Montes
    COMPUTERS & SECURITY, 2016, 58 : 20 - 38
  • [46] Is it worth the risk? - An astronaut's approach to risk awareness
    Ewald, Reinhold
    ACTA ASTRONAUTICA, 2019, 161 : 368 - 372
  • [47] Awareness, perceptions of and compliance with tobacco control policies among naswar vendors in Khyber Pakhtunkhwa Pakistan
    Ahmad, Fayaz
    Khan, Zohaib
    Siddiqi, Kamran
    Khan, Muhammad Naseem
    Kibria, Zeeshan
    Forberger, Sarah
    Bauld, Linda
    Kanaan, Mona
    Zeeb, Hajo
    TOBACCO CONTROL, 2022, 31 (E2) : E111 - E117
  • [48] Environmental surveillance monitor increases educational awareness of and compliance with infection control and OSHA policies.
    Jurgensen, PF
    McNally, MM
    Deighton, K
    Oliver, S
    Kraeski, M
    INFECTION CONTROL AND HOSPITAL EPIDEMIOLOGY, 1998, 19 (09): : 710 - 710
  • [49] Optimizing business processes compliance using an evolvable risk-based approach
    Guerreiro, Sergio
    Marques, Rui Pedro
    Gaaloul, Khaled
    PROCEEDINGS OF THE 49TH ANNUAL HAWAII INTERNATIONAL CONFERENCE ON SYSTEM SCIENCES (HICSS 2016), 2016, : 5652 - 5661
  • [50] ANTITRUST COMPLIANCE IN THE CONTEXT OF APPLYING A RISK-BASED APPROACH TO ANTITRUST CONTROL
    Pisenko, Kirill Andreevich
    Botvinnik, Stanislav Lvovich
    TURISMO-ESTUDOS E PRATICAS, 2021,
12345