Automatic detection of access control vulnerabilities via API specification processing.
Alexander BarabanovDenis DergunovDenis MakrushinAleksey TeplovPublished in: CoRR (2022)
Keyphrases
- automatic detection
- access control
- security mechanisms
- fine grained
- data security
- dynamic access control
- access control models
- security policies
- security model
- role based access control
- database security
- access control policies
- identity management
- security architecture
- source code
- role assignment
- security issues
- access control systems
- unauthorized access
- role based access control model
- open source
- databases
- security requirements
- information security
- third party
- database applications