An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation

Policy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attr...

Full description

Bibliographic Details
Main Authors: Hamidah Ibrahim, Fatimah Sidi, Nur Izura Udzir, Poh Kuang Teo
Format: Article
Language:English
Published: Science and Research Branch,Islamic Azad University 2018-11-01
Series:Journal of Advances in Computer Engineering and Technology
Subjects:
Online Access:http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdf
id doaj-d9ddd640c32c48838c748215c07a1734
record_format Article
spelling doaj-d9ddd640c32c48838c748215c07a17342020-11-25T00:27:30ZengScience and Research Branch,Islamic Azad UniversityJournal of Advances in Computer Engineering and Technology2423-41922423-42062018-11-014425526613342An Effective Modality Conflict Model for Identifying Applicable Policies During Policy EvaluationHamidah Ibrahim0Fatimah Sidi1Nur Izura Udzir2Poh Kuang Teo3Department of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyDepartment of Computer Science Faculty of Computer Science and Information TechnologyPolicy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attributes such as spatial and temporal constraints. An effective authorization propagation rule is needed to detect the modality conflicts that occur among the applicable policies. This work proposes a modality conflict detection model to identify the applicable policies during policy evaluation, which supports an authorization propagation rule to investigate the class-subclass relationships of a subject, resource, action, and location of a request and a policy. The comparison with previous work is conducted, and findings show the solution which considers the condition attribute (i.e. spatial and temporal constraints) can affect the decision as to whether the applicable policies should be retrieved or not which further affect the accuracy of the modality conflict detection process. Whereas the applicable policies which are retrieved for a request can influence the detection of modality conflict among the applicable policies. In conclusion, our proposed solution is more effective in identifying the applicable policies and detecting modality conflict than the previous work.http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdfaccess control policiesauthorization propagationeffectivenessmodality conflictpolicy evaluationXACML
collection DOAJ
language English
format Article
sources DOAJ
author Hamidah Ibrahim
Fatimah Sidi
Nur Izura Udzir
Poh Kuang Teo
spellingShingle Hamidah Ibrahim
Fatimah Sidi
Nur Izura Udzir
Poh Kuang Teo
An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
Journal of Advances in Computer Engineering and Technology
access control policies
authorization propagation
effectiveness
modality conflict
policy evaluation
XACML
author_facet Hamidah Ibrahim
Fatimah Sidi
Nur Izura Udzir
Poh Kuang Teo
author_sort Hamidah Ibrahim
title An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
title_short An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
title_full An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
title_fullStr An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
title_full_unstemmed An Effective Modality Conflict Model for Identifying Applicable Policies During Policy Evaluation
title_sort effective modality conflict model for identifying applicable policies during policy evaluation
publisher Science and Research Branch,Islamic Azad University
series Journal of Advances in Computer Engineering and Technology
issn 2423-4192
2423-4206
publishDate 2018-11-01
description Policy evaluation is a process to determine whether a request submitted by a user satisfies the access control policies defined by an organization. Modality conflict is one of the main issues in policy evaluation. Existing modality conflict detection approaches do not consider complex condition attributes such as spatial and temporal constraints. An effective authorization propagation rule is needed to detect the modality conflicts that occur among the applicable policies. This work proposes a modality conflict detection model to identify the applicable policies during policy evaluation, which supports an authorization propagation rule to investigate the class-subclass relationships of a subject, resource, action, and location of a request and a policy. The comparison with previous work is conducted, and findings show the solution which considers the condition attribute (i.e. spatial and temporal constraints) can affect the decision as to whether the applicable policies should be retrieved or not which further affect the accuracy of the modality conflict detection process. Whereas the applicable policies which are retrieved for a request can influence the detection of modality conflict among the applicable policies. In conclusion, our proposed solution is more effective in identifying the applicable policies and detecting modality conflict than the previous work.
topic access control policies
authorization propagation
effectiveness
modality conflict
policy evaluation
XACML
url http://jacet.srbiau.ac.ir/article_13342_ae959aff760f416862bade4e5adb2996.pdf
work_keys_str_mv AT hamidahibrahim aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT fatimahsidi aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT nurizuraudzir aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT pohkuangteo aneffectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT hamidahibrahim effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT fatimahsidi effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT nurizuraudzir effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
AT pohkuangteo effectivemodalityconflictmodelforidentifyingapplicablepoliciesduringpolicyevaluation
_version_ 1725339471694528512