Abstract
Role-based access control (RBAC) is commonly used to implement authorization procedures in Process-aware information systems (PAIS). Process mining refers to a bundle of algorithms that typically discover process models from event log data produced during the execution of real-world processes. Beyond pure control flow mining, some techniques focus on the discovery of organizational information from event logs. However, a systematic analysis and comparison of these approaches with respect to their suitability for mining RBAC models is still missing. This paper works towards filling this gap and provides a first guidance for applying mining techniques for deriving RBAC models.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Baumgrass, A.: Deriving Current-State RBAC Models from Event Logs. In: Proc. of the 6th International Conference on Availability, Reliability and Security (ARES). IEEE Computer Society (2011)
Baumgrass, A., Schefer-Wenzl, S., Strembeck, M.: Deriving Process-Related RBAC Models from Process Execution Histories. In: Proc. of the 2012 IEEE 36th Int. Conference on Computer Software and Applications Workshops. IEEE Computer Society (2012)
Ferraiolo, D.F., Kuhn, R.D., Chandramouli, R.: Role-Based Access Control, 2nd edn. Artech House, Inc., Norwood (2007)
Ly, L., Rinderle, S., Dadam, P., Reichert, M.: Mining Staff Assignment Rules from Event-Based Data. In: Bussler, C., Haller, A. (eds.) BPM 2005. LNCS, vol. 3812, pp. 177–190. Springer, Heidelberg (2006)
de Medeiros, A.K.A., Günther, C.W.: Process Mining: Using CPN Tools to Create Test Logs for Mining Algorithms. In: Proc. of the 6th Workshop and Tutorial on Practical Use of Coloured Petri Nets and the CPN Tools (2005)
de Medeiros, A.K.A., van den Brand, P., van der Aalst, W.M.P., Weijters, T., Gaaloul, W., Pedrinaci, C.: Semantic Process Mining Tool - Final Implementation, Deliverable 6.11, Project IST 026850 SUPER (September 2008)
Song, M., van der Aalst, W.M.P.: Towards comprehensive support for organizational mining. Decision Support Systems 46(1) (2008)
Strembeck, M.: A Role Engineering Tool for Role-Based Access Control. In: Proc. of the 3rd Symposium on Requirements Engineering for Information Security (SREIS) (August 2005)
Strembeck, M., Mendling, J.: Modeling process-related RBAC models with extended UML activity models. Information and Software Technology 53(5) (2011)
van der Aalst, W.M.P.: Process Mining - Discovery, Conformance and Enhancement of Business Processes. Springer (2011)
van der Aalst, W.M.P., van Dongen, B.F., Günther, C., Rozinat, A., Verbeek, H.M.W., Weijters, A.J.M.M.: ProM: The Process Mining Toolkit. In: Proc. of the BPM 2009 Demonstration Track. vol. 489. CEUR-WS.org (September 2009)
Zhang, D., Ramamohanarao, K., Ebringer, T., Yann, T.: Permission Set Mining: Discovering Practical and Useful Roles. In: Proc. of the 2008 Annual Computer Security Applications Conference. IEEE Computer Society (2008)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Leitner, M., Baumgrass, A., Schefer-Wenzl, S., Rinderle-Ma, S., Strembeck, M. (2013). A Case Study on the Suitability of Process Mining to Produce Current-State RBAC Models. In: La Rosa, M., Soffer, P. (eds) Business Process Management Workshops. BPM 2012. Lecture Notes in Business Information Processing, vol 132. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-36285-9_72
Download citation
DOI: https://doi.org/10.1007/978-3-642-36285-9_72
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-36284-2
Online ISBN: 978-3-642-36285-9
eBook Packages: Computer ScienceComputer Science (R0)