TY - GEN
T1 - A deep learning approach for extracting attributes of ABAC policies
AU - Alohaly, Manar
AU - Takabi, Hassan
AU - Blanco, Eduardo
N1 - Publisher Copyright:
© 2018 Association for Computing Machinery.
PY - 2018/6/7
Y1 - 2018/6/7
N2 - The National Institute of Standards and Technology (NIST) has identified natural language policies as the preferred expression of policy and implicitly called for an automated translation of ABAC natural language access control policy (NLACP) to a machine-readable form. An essential step towards this automation is to automate the extraction of ABAC attributes from NLACPs, which is the focus of this paper. We, therefore, raise the question of: how can we automate the task of attributes extraction from natural language documents? Our proposed solution to this question is built upon the recent advancements in natural language processing and machine learning techniques. For such a solution, the lack of appropriate data often poses a bottleneck. Therefore, we decouple the primary contributions of this work into: (1) developing a practical framework to extract ABAC attributes from natural language artifacts, and (2) generating a set of realistic synthetic natural language access control policies (NLACPs) to evaluate the proposed framework. The experimental results are promising with regard to the potential automation of the task of interest. Using a convolutional neural network (CNN), we achieved - in average - an F1-score of 0.96 when extracting the attributes of subjects, and 0.91 when extracting the objects' attributes from natural language access control policies.
AB - The National Institute of Standards and Technology (NIST) has identified natural language policies as the preferred expression of policy and implicitly called for an automated translation of ABAC natural language access control policy (NLACP) to a machine-readable form. An essential step towards this automation is to automate the extraction of ABAC attributes from NLACPs, which is the focus of this paper. We, therefore, raise the question of: how can we automate the task of attributes extraction from natural language documents? Our proposed solution to this question is built upon the recent advancements in natural language processing and machine learning techniques. For such a solution, the lack of appropriate data often poses a bottleneck. Therefore, we decouple the primary contributions of this work into: (1) developing a practical framework to extract ABAC attributes from natural language artifacts, and (2) generating a set of realistic synthetic natural language access control policies (NLACPs) to evaluate the proposed framework. The experimental results are promising with regard to the potential automation of the task of interest. Using a convolutional neural network (CNN), we achieved - in average - an F1-score of 0.96 when extracting the attributes of subjects, and 0.91 when extracting the objects' attributes from natural language access control policies.
KW - Access control policy
KW - Attribute based access control
KW - Deep learning
KW - Natural language processing
KW - Policy authoring
KW - Relation extraction
UR - http://www.scopus.com/inward/record.url?scp=85049313245&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85049313245&partnerID=8YFLogxK
U2 - 10.1145/3205977.3205984
DO - 10.1145/3205977.3205984
M3 - Conference contribution
AN - SCOPUS:85049313245
T3 - Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT
SP - 137
EP - 148
BT - SACMAT 2018 - Proceedings of the 23rd ACM Symposium on Access Control Models and Technologies
PB - Association for Computing Machinery
T2 - 23rd ACM Symposium on Access Control Models and Technologies, SACMAT 2018
Y2 - 13 June 2018 through 15 June 2018
ER -