There are various security policy models available to deal with the challenges in multiple domain networks. Applying role based access control (RBAC) is one the widely accepted and currently deployed access control model in multiple domain environments to support mobility constraints of users between domains, inter domain services and its access rights. The objective of this paper is representing various access permissions of multiple domain role based access control model using formal concept analysis (FCA) which is one of the widely used mathematical frameworks for knowledge representation and conceptual analysis. To succeed this objective, we deduce a dyadic formal context from the quadratic security context of inter domain role based access control model. We present the implementation of inter domain role based access control security policy with service access matrix and permission assignment relation. The analysis proves that it is possible to simplify the complex quadratic inter domain security context into simple dyadic context and apply it in the multiple domain networks. © 2015 IEEE.

Aswani Kumar Cherukuri

Department of Information Technology

School of Information Technology and Engineering

Vellore Campus

Mouliswaran S.C

Chandrasekar C.

Vellore Institute of Technology (VIT) is a private university located in&nbsp;Tamil Nadu, India. Founded in 1984, as Vellore Engineering College, the institution offers 20 undergraduate, 34 postgraduate, four integrated and four research programs. It has campuses in Vellore, Amravati, Bhopal and Chennai.

VIT is one of the top ranked private universities in India according to NIRF, THE and QS Rankings.&nbsp;Govt. of India has recognized&nbsp;VIT, Vellore as an&nbsp;Institution of Eminence. This has allowed VIT to take independent quality initiatives and move up in world ranking.

&nbsp;

&nbsp;

VIT University

Representation of multiple domain role based access control using FCA

2015 IEEE International Conference on Electrical, Computer and Communication Technologies (ICECCT)

Role based access control (RBAC) is one of the popular access control models. On representing the policy behind RBAC, the literatures investigate the use of various knowledge representation techniques such as Descriptive logics, Formal Concept Analysis (FCA), Ontology etc. Based on the input of binary access control table, the existing knowledge representation techniques on RBAC derives two-way decisions whether to permit the access request or not. It works well when single element in the set of elements of a constituent of RBAC initiates the access request. Consider the scenario of multiple distinct elements in the set of elements of a constituent of RBAC initiate the collective access request to a set of elements in other constituent of RBAC. In many cases of this scenario, some elements possess but not all of the elements possess the permission to access all elements in other subset of a constituent of RBAC. On this situation, the collective access decision to those multiple distinct elements in the set of elements of a RBAC constituent appears in three forms such as permit, deny and non-commitment. Three-way formal concept analysis (3WCA) is an emerging knowledge representation technique which provides two types of three-way concepts and their lattices to enable three-way decisions from the binary information table. At this juncture, it is more suitable to apply 3WCA on representing the RBAC policy to enable three-way decisions instead of existing two-way decisions in classical FCA and triadic FCA. The main objective of this paper is to propose a methodology for modelling RBAC using 3WCA and attain its distinctive merits. Our discussion is on two lines of inquiry. We present on how 3WCA can provide suitable representation of RBAC policy and whether this representation follows role hierarchy and constraints of RBAC.

International Journal of Machine Learning and Cybernetics

Role based access control design using three-way formal concept analysis

Role based access control is one of the widely used access control models. There are investigations in the literature that use knowledge representation mechanisms such as formal concept analysis (FCA), description logics, and Ontology for representing access control mechanism. However, while using FCA, investigations reported in the literature so far work on the logic that transforms the three dimensional access control matrix into dyadic formal contexts. This transformation is mainly to derive the formal concepts, lattice structure and implications to represent role hierarchy and constraints of RBAC. In this work, we propose a methodology that models RBAC using triadic FCA without transforming the triadic access control matrix into dyadic formal contexts. Our discussion is on two lines of inquiry. We present how triadic FCA can provide a suitable representation of RBAC policy and we demonstrate how this representation follows role hierarchy and constraints of RBAC on sample healthcare network available in the literature. © 2016, Central South University Press and Springer-Verlag Berlin Heidelberg.

Journal of Central South University

Role based access control design using triadic concept analysis

There are several access control models available for multiple domain environments. Applying role based access control for inter-domain services of multiple domain environment meet the challenges such as mapping of inter-domain role hierarchy, separation of duty constraints on role conflict, service conflict and location conflict. In the recent times, ontology based access control is introduced for various domain of interest. The main purpose of this paper is representing inter-domain access permissions of multiple domain environments using ontology which is the formal and explicit representation of a domain of interest through their concepts and their associations. To attain this objective, we propose a procedure to transform the access permission matrix of multiple domain environments into inter-domain access control ontology. The implementation shows that it is possible to formalize ontology for access permission of inter-domain security policy without any conflicts in terms of inter-domain roles, services and domains in multiple domain environments. © 2015 IEEE.

2015 International Conference on Advances in Computing, Communications and Informatics (ICACCI)

Inter-domain role based access control using ontology

Formal Concept Analysis (FCA) is a mathematical framework that offers conceptual data analysis and knowledge discovery. One of the main issues of knowledge discovery is knowledge reduction. The objective of this paper is to investigate the knowledge reduction in FCA and propose a method based on Non-Negative Matrix Factorization (NMF) for addressing the issue. Experiments on real world and benchmark datasets offer the evidence for the performance of the proposed method. © 2014 International Association for Mathematics and Computers in Simulation (IMACS).

Mathematics and Computers in Simulation

Knowledge reduction in formal contexts using non-negative matrix factorization

Rule acquisition is one of the main purposes in the analysis of decision formal contexts. Up to now, there have existed several types of rules (e.g., the decision rules and the granular rules) in decision formal contexts. This study firstly proposes a new algorithm with less time complexity for deriving the non-redundant decision rules from a decision formal context. Then, we invesigate decision rules and the granular rules in the consistent decision formal contexts and make a contrast between the decision rule oriented knowledge reduction and the granular rule oriented knowledge reduction. Finally, some experiments are conducted to assess the efficiency of the proposed rule acquisition algorithm. © 2013 Springer-Verlag Berlin Heidelberg.

On rule acquisition in decision formal contexts

Role-based access control (RBAC) is one of the most popular and widely deployed access control model. The objective of this paper is to design an RBAC using formal concept analysis, which is based on mathematical lattice and order theory. For this purpose, we derive a dyadic formal context from the triadic security context that represents role-based access permission and perform attribute exploration from formal concept analysis. We demonstrate the proposed method on a health care ad hoc network. The analysis indicates that the proposed method follows the RBAC constraints: static separation of duties and role hierarchy. © 2012 John Wiley &amp; Sons, Ltd.

Security and Communication Networks

Designing role-based access control using formal concept analysis

Formal Concept Analysis (FCA), in which data is represented as a formal context, offers a framework for Association Rules Mining (ARM) by handling functional dependencies in the data. However, with the size of the formal context, the number of rules grows exponentially. In this article, we apply Fuzzy K-Means clustering on the data set to reduce the formal context and FCA on the reduced data set for mining association rules. With experiments on two real-world healthcare data sets, we offer the evidence for performance of FKM-based FCA in mining association rules. Copyright © 2012 Taylor &amp; Francis Group, LLC.

Applied Artificial Intelligence

FUZZY CLUSTERING-BASED FORMAL CONCEPT ANALYSIS FOR ASSOCIATION RULES MINING

During the design of concept lattices, complexity plays a major role in computing all the concepts from the huge incidence matrix. Hence for reducing the size of the lattice, methods based on matrix decompositions like SVD are available in the literature. However, SVD computation is known to have large time and memory requirements. In this paper, we propose a new method based on Fuzzy K-Means clustering for reducing the size of the concept lattices. We demonstrate the implementation of proposed method on two application areas: information retrieval and information visualization. © 2009 Elsevier Ltd. All rights reserved.

Journal	Data powered by Typeset2015 IEEE International Conference on Electrical, Computer and Communication Technologies (ICECCT)
Publisher	Data powered by TypesetIEEE
Open Access	0