Role Mining In Business: Taming Role-based Access Control Administration

Saved in:
Bibliographic Details
Title: Role Mining In Business: Taming Role-based Access Control Administration
Description: With continuous growth in the number of information objects and the users that can access these objects, ensuring that access is compliant with company policies has become a big challenge. Role-based Access Control (RBAC) — a policy-neutral access control model that serves as a bridge between academia and industry — is probably the most suitable security model for commercial applications.Interestingly, role design determines RBAC's cost. When there are hundreds or thousands of users within an organization, with individual functions and responsibilities to be accurately reflected in terms of access permissions, only a well-defined role engineering process allows for significant savings of time and money while protecting data and systems.Among role engineering approaches, searching through access control systems to find de facto roles embedded in existing permissions is attracting increasing interest. The focus falls on role mining, which is applied data mining techniques to automate — to the extent possible — the role design task.This book explores existing role mining algorithms and offers insights into the automated role design approaches proposed in the literature. Alongside theory, this book acts as a practical guide for using role mining tools when implementing RBAC. Besides a comprehensive survey of role mining techniques deeply rooted in academic research, this book also provides a summary of the role-based approach, access control concepts and describes a typical role engineering process.Among the pioneering works on role mining, this book blends business elements with data mining theory, and thus further extends the applications of role mining into business practice. This makes it a useful guide for all academics, IT and business professionals.
Authors: Roberto Di Pietro, Alessandro Colantonio, Alberto Ocello
Resource Type: eBook.
Subjects: Computer security, Computers--Access control, Computer networks
Categories: COMPUTERS / Data Science / Data Analytics, COMPUTERS / Management Information Systems, COMPUTERS / Security / Network Security
Database: eBook Collection (EBSCOhost)
FullText Links:
  – Type: ebook-pdf
Text:
  Availability: 0
Header DbId: nlebk
DbLabel: eBook Collection (EBSCOhost)
An: 457188
RelevancyScore: 1044
AccessLevel: 6
PubType: eBook
PubTypeId: ebook
PreciseRelevancyScore: 1044.26904296875
IllustrationInfo
ImageInfo – Size: thumb
  Target: https://rps2images.ebscohost.com/rpsweb/othumb?id=NL$457188$PDF&s=r
– Size: medium
  Target: https://rps2images.ebscohost.com/rpsweb/othumb?id=NL$457188$PDF&s=d
Items – Name: Title
  Label: Title
  Group: Ti
  Data: Role Mining In Business: Taming Role-based Access Control Administration
– Name: Abstract
  Label: Description
  Group: Ab
  Data: With continuous growth in the number of information objects and the users that can access these objects, ensuring that access is compliant with company policies has become a big challenge. Role-based Access Control (RBAC) — a policy-neutral access control model that serves as a bridge between academia and industry — is probably the most suitable security model for commercial applications.Interestingly, role design determines RBAC's cost. When there are hundreds or thousands of users within an organization, with individual functions and responsibilities to be accurately reflected in terms of access permissions, only a well-defined role engineering process allows for significant savings of time and money while protecting data and systems.Among role engineering approaches, searching through access control systems to find de facto roles embedded in existing permissions is attracting increasing interest. The focus falls on role mining, which is applied data mining techniques to automate — to the extent possible — the role design task.This book explores existing role mining algorithms and offers insights into the automated role design approaches proposed in the literature. Alongside theory, this book acts as a practical guide for using role mining tools when implementing RBAC. Besides a comprehensive survey of role mining techniques deeply rooted in academic research, this book also provides a summary of the role-based approach, access control concepts and describes a typical role engineering process.Among the pioneering works on role mining, this book blends business elements with data mining theory, and thus further extends the applications of role mining into business practice. This makes it a useful guide for all academics, IT and business professionals.
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Roberto+Di+Pietro%22">Roberto Di Pietro</searchLink><br /><searchLink fieldCode="AR" term="%22Alessandro+Colantonio%22">Alessandro Colantonio</searchLink><br /><searchLink fieldCode="AR" term="%22Alberto+Ocello%22">Alberto Ocello</searchLink>
– Name: TypePub
  Label: Resource Type
  Group: TypPub
  Data: eBook.
– Name: Subject
  Label: Subjects
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Computer+security%22">Computer security</searchLink><br /><searchLink fieldCode="DE" term="%22Computers--Access+control%22">Computers--Access control</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+networks%22">Computer networks</searchLink>
– Name: SubjectBISAC
  Label: Categories
  Group: Su
  Data: <searchLink fieldCode="ZK" term="%22COMPUTERS+%2F+Data+Science+%2F+Data+Analytics%22">COMPUTERS / Data Science / Data Analytics</searchLink><br /><searchLink fieldCode="ZK" term="%22COMPUTERS+%2F+Management+Information+Systems%22">COMPUTERS / Management Information Systems</searchLink><br /><searchLink fieldCode="ZK" term="%22COMPUTERS+%2F+Security+%2F+Network+Security%22">COMPUTERS / Security / Network Security</searchLink>
PLink https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=nlebk&AN=457188
RecordInfo BibRecord:
  BibEntity:
    Classifications:
      – Code: 006.312
        Scheme: ddc
        Type: prePub
    Languages:
      – Code: eng
        Text: English
    Subjects:
      – SubjectFull: Computer security
        Type: general
      – SubjectFull: Computers--Access control
        Type: general
      – SubjectFull: Computer networks
        Type: general
    Titles:
      – TitleFull: Role Mining In Business: Taming Role-based Access Control Administration
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Roberto Di Pietro
      – PersonEntity:
          Name:
            NameFull: Alessandro Colantonio
      – PersonEntity:
          Name:
            NameFull: Alberto Ocello
      – PersonEntity:
          Name:
            NameFull: Roberto Di Pietro
      – PersonEntity:
          Name:
            NameFull: Alessandro Colantonio
      – PersonEntity:
          Name:
            NameFull: Alberto Ocello
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 01
              Type: published
              Y: 2012
            – D: 04
              M: 02
              Type: profile
              Y: 2014
          Identifiers:
            – Type: isbn-print
              Value: 9789814374002
            – Type: isbn-electronic
              Value: 9789814366151
          Titles:
            – TitleFull: Role Mining In Business: Taming Role-based Access Control Administration
              Type: main
ResultId 1