Automated extraction of access control policy from natural language documents
| dc.contributor.author | Alqurashi, Saja, author | |
| dc.contributor.author | Ray, Indrakshi, advisor | |
| dc.contributor.author | Ray, Indrajit, committee member | |
| dc.contributor.author | Malaiya, Yashwant, committee member | |
| dc.contributor.author | Simske, Steve, committee member | |
| dc.date.accessioned | 2024-01-01T11:24:23Z | |
| dc.date.available | 2025-12-29 | |
| dc.date.issued | 2023 | |
| dc.description.abstract | Data security and privacy are fundamental requirements in information systems. The first step to providing data security and privacy for organizations is defining access control policies (ACPs). Security requirements are often expressed in natural languages, and ACPs are embedded in the security requirements. However, ACPs in natural language are unstructured and ambiguous, so manually extracting ACPs from security requirements and translating them into enforceable policies is tedious, complex, expensive, labor-intensive, and error-prone. Thus, the automated ACPs specification process is crucial. In this thesis, we consider the Next Generation Access Control (NGAC) model as our reference formal access control model to study the automation process. This thesis addresses the research question: How do we automatically translate access control policies (ACPs) from natural language expression to the NGAC formal specification? Answering this research question entails building an automated extraction framework. The pro- posed framework aims to translate natural language ACPs into NGAC specifications automatically. The primary contributions of this research are developing models to construct ACPs in NGAC specification from natural language automatically and generating a realistic synthetic dataset of access control policies sentences to evaluate the proposed framework. Our experimental results are promising as we achieved, on average, an F1-score of 93 % when identifying ACPs sentences, an F1-score of 96 % when extracting NGAC relations between attributes, and an F1-score of 96% when extracting user attribute and 89% for object attribute from natural language access control policies. | |
| dc.format.medium | born digital | |
| dc.format.medium | masters theses | |
| dc.identifier | Alqurashi_colostate_0053N_18160.pdf | |
| dc.identifier.uri | https://hdl.handle.net/10217/237384 | |
| dc.language | English | |
| dc.language.iso | eng | |
| dc.publisher | Colorado State University. Libraries | |
| dc.relation.ispartof | 2020- | |
| dc.rights | Copyright and other restrictions may apply. User is responsible for compliance with all applicable laws. For information about copyright law, please see https://libguides.colostate.edu/copyright. | |
| dc.rights.access | Embargo expires: 12/29/2025. | |
| dc.title | Automated extraction of access control policy from natural language documents | |
| dc.type | Text | |
| dcterms.embargo.expires | 2025-12-29 | |
| dcterms.embargo.terms | 2025-12-29 | |
| dcterms.rights.dpla | This Item is protected by copyright and/or related rights (https://rightsstatements.org/vocab/InC/1.0/). You are free to use this Item in any way that is permitted by the copyright and related rights legislation that applies to your use. For other uses you need to obtain permission from the rights-holder(s). | |
| thesis.degree.discipline | Computer Science | |
| thesis.degree.grantor | Colorado State University | |
| thesis.degree.level | Masters | |
| thesis.degree.name | Master of Science (M.S.) |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- Alqurashi_colostate_0053N_18160.pdf
- Size:
- 291.58 KB
- Format:
- Adobe Portable Document Format