Policy adaptation in hierarchical attribute-based access control systems

Saptarshi Das, Shamik Sural, Jaideep Vaidya, Vijayalakshmi Atluri

Research output: Contribution to journalArticlepeer-review

5 Scopus citations


In Attribute-Based Access Control (ABAC), access to resources is given based on the attributes of subjects, objects, and environment. There is an imminent need for the development of efficient algorithms that enable migration to ABAC. However, existing policy mining approaches do not consider possible adaptation to the policy of a similar organization. In this article, we address the problem of automatically determining an optimal assignment of attribute values to subjects for enabling the desired accesses to be granted while minimizing the number of ABAC rules used by each subject or other appropriate metrics. We show the problem to be NP-Complete and propose a heuristic solution.

Original languageEnglish (US)
Article number40
JournalACM Transactions on Internet Technology
Issue number3
StatePublished - Oct 2019

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications


  • ABAC policy
  • Attribute value hierarchy
  • Policy adaptation


Dive into the research topics of 'Policy adaptation in hierarchical attribute-based access control systems'. Together they form a unique fingerprint.

Cite this