# User Authorization in a System with a Role-Based Access Control on the   Basis of the Analytic Hierarchy Process

**Authors:** S.V. Belim, S.Yu. Belim, N.F. Bogachenko, A.N. Kabanov

arXiv: 1812.08494 · 2018-12-21

## TL;DR

This paper presents a method for optimal user authorization in role-based access control systems using the Analytic Hierarchy Process to minimize permission leakage risks, with an algorithm based on role graph characteristics.

## Contribution

It introduces a new algorithm for role selection in access control that relies on quantitative role graph data, avoiding subjective expert input.

## Key findings

- Algorithm effectively minimizes permission leakage risks.
- Scalable and independent of subjective evaluations.
- Provides a quantitative basis for role hierarchy decisions.

## Abstract

The problem of optimal authorization of a user in a system with a role-based access control policy is considered. The main criterion is to minimize the risks of permission leakage. The choice of the role for authorization is based on the analytic hierarchy process. The substantiation of a choice of criteria for formation of a hierarchy of the first level is given. An algorithm for calculating weight coefficients is presented, based on the quantitative characteristics of the role graph and not dependent on subjective expert evaluations. The complexity is estimated and the scalability of the proposed algorithm is discussed.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1812.08494/full.md

## Figures

1 figure with captions in the complete paper: https://tomesphere.com/paper/1812.08494/full.md

## References

11 references — full list in the complete paper: https://tomesphere.com/paper/1812.08494/full.md

---
Source: https://tomesphere.com/paper/1812.08494