首页>
外国专利>
Generating role-based access control policies based on discovered risk-averse roles
Generating role-based access control policies based on discovered risk-averse roles
展开▼
机译:根据发现的规避风险的角色生成基于角色的访问控制策略
展开▼
页面导航
摘要
著录项
相似文献
摘要
Generating role-based access control policies is provided. A user-permission relation is generated by extracting users and permissions assigned to each of the users from a stored access control policy. A user-attribute relation is generated by mapping the users to attributes describing the users. A permission-attribute relation is generated by mapping the permissions to attributes describing the permissions. The set of risk-averse roles, assignment of the set of risk-averse roles to the users, and assignment of the permissions to the set of risk-averse roles are determined based on applying a risk-optimization function to the generated user-permission relation, the generated user-attribute relation, and the generated permission-attribute relation. A role-based access control policy that minimizes a risk profile of the set of risk-averse roles, the assignment of the set of risk-averse roles to the users, and the assignment of the permissions to the set of risk-averse roles is generated.
展开▼