Method of Grouping Subjects and Objects in Information Systems

Method of Grouping Subjects and Objects in Information Systems

The paper considers the problem of dividing users and information systems into groups in organizations of an arbitrary scale. Modern methods do not consider specifics of the organization, business priorities and actual attacking techniques. Two feature sets for subjects and information systems are p...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Bondareva, Anastasiya, Shilov, Ilya
Format: Tagungsbericht
Sprache:eng
Schlagworte:
access control
access objects
access subjects
clustering
Clustering algorithms
information infrastructure
information security
information systems
Machine learning
Machine learning algorithms
Measurement
Optimization methods
Organizations
segmentation
Technological innovation
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The paper considers the problem of dividing users and information systems into groups in organizations of an arbitrary scale. Modern methods do not consider specifics of the organization, business priorities and actual attacking techniques. Two feature sets for subjects and information systems are presented. The features are selected by analysis of dispersion, correlation coefficients and linear regression models built on pairs of features. An evaluation of clustering algorithms applicability to the problem of dividing users and information systems into groups is performed. An algorithm applying the results to real world organizations is constructed. The output of the algorithm can be used for network information security evaluation, access rights management and for designing requirements for network segmentation.
ISSN:2305-7254
2343-0737
DOI:10.23919/FRUCT53335.2021.9599989