An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
Policy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attr...
Main Authors: | , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Science and Research Branch,Islamic Azad University
2018-11-01
|
Series: | Journal of Advances in Computer Engineering and Technology |
Subjects: | |
Online Access: | http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdf |
id |
doaj-d9ddd640c32c48838c748215c07a1734 |
---|---|
record_format |
Article |
spelling |
doaj-d9ddd640c32c48838c748215c07a17342020-11-25T00:27:30ZengScience and Research Branch,Islamic Azad UniversityJournal of Advances in Computer Engineering and Technology2423-41922423-42062018-11-014425526613342An Effective Modality Conflict Model for Identifying Applicable Policies During Policy EvaluationHamidah Ibrahim0Fatimah Sidi1Nur Izura Udzir2Poh Kuang Teo3Department of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyPolicy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attributes such as spatial and temporal constraints. An effective authorization propagation rule is needed to detect the modality conflicts that occur among the applicable policies. This work proposes a modality conflict detection model to identify the applicable policies during policy evaluation, which supports an authorization propagation rule to investigate the class-subclass relationships of a subject, resource, action, and location of a request and a policy. The comparison with previous work is conducted, and findings show the solution which considers the condition attribute (i.e. spatial and temporal constraints) can affect the decision as to whether the applicable policies should be retrieved or not which further affect the accuracy of the modality conflict detection process. Whereas the applicable policies which are retrieved for a request can influence the detection of modality conflict among the applicable policies. In conclusion, our proposed solution is more effective in identifying the applicable policies and detecting modality conflict than the previous work.http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdfaccess control policiesauthorization propagationeffectivenessmodality conflictpolicy evaluationXACML |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Hamidah Ibrahim Fatimah Sidi Nur Izura Udzir Poh Kuang Teo |
spellingShingle |
Hamidah Ibrahim Fatimah Sidi Nur Izura Udzir Poh Kuang Teo An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation Journal of Advances in Computer Engineering and Technology access control policies authorization propagation effectiveness modality conflict policy evaluation XACML |
author_facet |
Hamidah Ibrahim Fatimah Sidi Nur Izura Udzir Poh Kuang Teo |
author_sort |
Hamidah Ibrahim |
title |
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation |
title_short |
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation |
title_full |
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation |
title_fullStr |
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation |
title_full_unstemmed |
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation |
title_sort |
effective modality conflict model for identifying applicable policies during policy evaluation |
publisher |
Science and Research Branch,Islamic Azad University |
series |
Journal of Advances in Computer Engineering and Technology |
issn |
2423-4192 2423-4206 |
publishDate |
2018-11-01 |
description |
Policy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attributes such as spatial and temporal constraints. An effective authorization propagation rule is needed to detect the modality conflicts that occur among the applicable policies. This work proposes a modality conflict detection model to identify the applicable policies during policy evaluation, which supports an authorization propagation rule to investigate the class-subclass relationships of a subject, resource, action, and location of a request and a policy. The comparison with previous work is conducted, and findings show the solution which considers the condition attribute (i.e. spatial and temporal constraints) can affect the decision as to whether the applicable policies should be retrieved or not which further affect the accuracy of the modality conflict detection process. Whereas the applicable policies which are retrieved for a request can influence the detection of modality conflict among the applicable policies. In conclusion, our proposed solution is more effective in identifying the applicable policies and detecting modality conflict than the previous work. |
topic |
access control policies authorization propagation effectiveness modality conflict policy evaluation XACML |
url |
http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdf |
work_keys_str_mv |
AT hamidahibrahim aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT fatimahsidi aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT nurizuraudzir aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT pohkuangteo aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT hamidahibrahim effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT fatimahsidi effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT nurizuraudzir effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation AT pohkuangteo effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation |
_version_ |
1725339471694528512 |