A Statistically Rigorous Evaluation of the Cascade Bloom Filter for Distributed Access Enforcement in Role-Based Access Control (RBAC) Systems
| dc.comment.hidden | Portions of this work have been accepted to appear in a peer-reviewed publication. The publication's citation is the following: M. Komlenovic, M. Tripunitara, and T. Zitouni. An Empirical Assessment of Approaches to Distributed Enforcement in Role-Based Access Control (RBAC). Accepted to appear, ACM Conference on Data and Application Security and Privacy (CODASPY), February 2011 | en |
| dc.contributor.author | Zitouni, Toufik | |
| dc.date.accessioned | 2011-01-20T16:34:24Z | |
| dc.date.available | 2011-01-20T16:34:24Z | |
| dc.date.issued | 2011-01-20T16:34:24Z | |
| dc.date.submitted | 2010 | |
| dc.description.abstract | We consider the distributed access enforcement problem for Role-Based Access Control (RBAC) systems. Such enforcement has become important with RBAC’s increasing adoption, and the proliferation of data that needs to be protected. Our particular interest is in the evaluation of a new data structure that has recently been proposed for enforcement: the Cascade Bloom Filter. The Cascade Bloom Filter is an extension of the Bloom filter, and provides for time- and space-efficient encodings of sets. We compare the Cascade Bloom Filter to the Bloom Filter, and another approach called Authorization Recycling that has been proposed for distributed access enforcement in RBAC. One of the challenges we address is the lack of a benchmark: we propose and justify a benchmark for the assessment. Also, we adopt a statistically rigorous approach for empirical assessment from recent work. We present our results for time- and space-efficiency based on our benchmark. We demonstrate that, of the three data structures that we consider, the Cascade Bloom Filter scales the best with the number of RBAC sessions from the standpoints of time- and space-efficiency. | en |
| dc.identifier.uri | http://hdl.handle.net/10012/5747 | |
| dc.language.iso | en | en |
| dc.pending | false | en |
| dc.publisher | University of Waterloo | en |
| dc.subject | Role Based Access Control | en |
| dc.subject | Cascade Bloom Filter | en |
| dc.subject | Authorization Recycling | en |
| dc.subject.program | Electrical and Computer Engineering | en |
| dc.title | A Statistically Rigorous Evaluation of the Cascade Bloom Filter for Distributed Access Enforcement in Role-Based Access Control (RBAC) Systems | en |
| dc.type | Master Thesis | en |
| uws-etd.degree | Master of Applied Science | en |
| uws-etd.degree.department | Electrical and Computer Engineering | en |
| uws.peerReviewStatus | Unreviewed | en |
| uws.scholarLevel | Graduate | en |
| uws.typeOfResource | Text | en |