Dynamic sensitivity-based access control

Amir Harel, Asaf Shabtai, Lior Rokach, Yuval Elovici

Proceedings of 2011 IEEE International Conference on Intelligence and …, 2011

In this paper we propose a new access control mechanism, Dynamic Sensitivity-Based Access Control (DSBAC), designed to regulate users’ access to sensitive data stored in relational databases. The DSBAC is an extension of the basic mandatory access control (MAC) mechanism, and it uses the M-score (Misuseability score) measure in order to assign, dynamically, an access class to each set of tuples.