A Dynamic Attribute based Logical Approach for Identifying and Controlling the Inconsistency of Organization Access Control Data

Abstract

Organization data access policy is becoming complex because of its dynamic attributes nature. Majority of access control policy data are consist of numerous attributes that are simultaneously influenced by an assorted number of substances. For this nature, controlling the execution of access control rules with multiple dynamic attributes is relatively complex. However, the dynamic movements of these attributes might responsible for data inconsistency. To address this issue, several pieces of research have conducted and reveal the importance of fluent accessing and controlling of these complex rules that are comparatively challenging. In this paper, we show a set of scenario about the dynamic changing nature of logical attributes and its consequences. This system performed by constructing a decision tree for detecting and resolving the inconsistency of access control rules. The full process described through the proposed inconsistency detection and inconsistency resolve algorithm. Effectiveness of the proposed system has demonstrated through evaluation and comparison data which performed by considering a case study and comparing other well known existing access control system respectively.