Authors:
Oleksii Osliak
1
;
2
;
Andrea Saracino
2
;
Fabio Martinelli
2
and
Theo Dimitrakos
3
Affiliations:
1
Department of Computer Science, University of Pisa, Pisa, Italy
;
2
Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Pisa, Italy
;
3
Huawei Technologies, Munich, Germany
Keyword(s):
Access Control, Policy Update, Cyber Threat Intelligence, Amazon Web Services.
Abstract:
Managing access to resources is one of the security mechanisms used for protecting the organization’s assets from unauthorized usage, and thus potential data leaks. Thus, keeping access control policies up to date is a crucial task for any organization. However, the access control policy update process usually requires direct interaction of security specialists, which have knowledge and experience in counteracting abuse of privileges. Therefore, in this paper, we consider access control policies update using collaborative knowledge in the latest cyber activities. We describe the correlation between security policies and security reports using ontology for cybersecurity. Finally, we present a framework that enables access control policies update within the Cloud infrastructure offered by Amazon using Cyber Threat Intelligence.