Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper)

Shmuel Amour; Ehud Gudes

doi:10.1007/978-3-032-10759-6_21

Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper)

Shmuel Amour
, Ehud Gudes

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Access control is vital for protecting organizational resources, with Role-based access control (RBAC) offering a widely adopted framework for managing permissions. However, static role assignments in traditional RBAC systems often become misaligned with evolving organizational structures and user behaviors, leading to inefficiencies and potential security risks. This paper explores a predictive enhancement to RBAC policies by analyzing historical access logs using Hierarchical Clustering (HCL) techniques. The proposed approach uncovers behavioral access patterns to support data-driven refinement of role assignments. By incorporating behavioral clustering into access control workflows, the method helps align permissions with observed usage trends and may reduce excessive privilege assignments. Evaluation on a real-world dataset demonstrates that the model adapts roles based on access behavior, offering a step toward more responsive and behavior-aware access governance.

Original language	English
Title of host publication	Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings
Editors	Adi Akavia, Shlomi Dolev, Anna Lysyanskaya, Rami Puzis
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	314-325
Number of pages	12
ISBN (Print)	9783032107589
DOIs	https://doi.org/10.1007/978-3-032-10759-6_21
State	Published - 1 Jan 2026
Event	9th International Symposium on Cyber Security, Cryptology, and Machine Learning, CSCML 2025 - Be'er Sheva, Israel Duration: 4 Dec 2025 → 5 Dec 2025

Publication series

Name	Lecture Notes in Computer Science
Volume	16244 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	9th International Symposium on Cyber Security, Cryptology, and Machine Learning, CSCML 2025
Country/Territory	Israel
City	Be'er Sheva
Period	4/12/25 → 5/12/25

Keywords

Access Log Analytics
Hierarchical Clustering
Machine Learning
Predictive Access Control
Role-Based Access Control (RBAC)

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-032-10759-6_21

Cite this

Amour, S., & Gudes, E. (2026). Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper). In A. Akavia, S. Dolev, A. Lysyanskaya, & R. Puzis (Eds.), Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings (pp. 314-325). (Lecture Notes in Computer Science; Vol. 16244 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-032-10759-6_21

Amour, Shmuel ; Gudes, Ehud. / Predictive Enhancement of RBAC Policies Using Access Log Analytics : (Short Paper). Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings. editor / Adi Akavia ; Shlomi Dolev ; Anna Lysyanskaya ; Rami Puzis. Springer Science and Business Media Deutschland GmbH, 2026. pp. 314-325 (Lecture Notes in Computer Science).

@inproceedings{ed65078d7aab4569a9fae229ba34b28a,

title = "Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper)",

abstract = "Access control is vital for protecting organizational resources, with Role-based access control (RBAC) offering a widely adopted framework for managing permissions. However, static role assignments in traditional RBAC systems often become misaligned with evolving organizational structures and user behaviors, leading to inefficiencies and potential security risks. This paper explores a predictive enhancement to RBAC policies by analyzing historical access logs using Hierarchical Clustering (HCL) techniques. The proposed approach uncovers behavioral access patterns to support data-driven refinement of role assignments. By incorporating behavioral clustering into access control workflows, the method helps align permissions with observed usage trends and may reduce excessive privilege assignments. Evaluation on a real-world dataset demonstrates that the model adapts roles based on access behavior, offering a step toward more responsive and behavior-aware access governance.",

keywords = "Access Log Analytics, Hierarchical Clustering, Machine Learning, Predictive Access Control, Role-Based Access Control (RBAC)",

author = "Shmuel Amour and Ehud Gudes",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.; 9th International Symposium on Cyber Security, Cryptology, and Machine Learning, CSCML 2025 ; Conference date: 04-12-2025 Through 05-12-2025",

year = "2026",

month = jan,

day = "1",

doi = "10.1007/978-3-032-10759-6\_21",

language = "English",

isbn = "9783032107589",

series = "Lecture Notes in Computer Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "314--325",

editor = "Adi Akavia and Shlomi Dolev and Anna Lysyanskaya and Rami Puzis",

booktitle = "Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings",

address = "Germany",

}

Amour, S & Gudes, E 2026, Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper). in A Akavia, S Dolev, A Lysyanskaya & R Puzis (eds), Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings. Lecture Notes in Computer Science, vol. 16244 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 314-325, 9th International Symposium on Cyber Security, Cryptology, and Machine Learning, CSCML 2025, Be'er Sheva, Israel, 4/12/25. https://doi.org/10.1007/978-3-032-10759-6_21

Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper). / Amour, Shmuel; Gudes, Ehud.
Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings. ed. / Adi Akavia; Shlomi Dolev; Anna Lysyanskaya; Rami Puzis. Springer Science and Business Media Deutschland GmbH, 2026. p. 314-325 (Lecture Notes in Computer Science; Vol. 16244 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Predictive Enhancement of RBAC Policies Using Access Log Analytics

T2 - 9th International Symposium on Cyber Security, Cryptology, and Machine Learning, CSCML 2025

AU - Amour, Shmuel

AU - Gudes, Ehud

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.

PY - 2026/1/1

Y1 - 2026/1/1

N2 - Access control is vital for protecting organizational resources, with Role-based access control (RBAC) offering a widely adopted framework for managing permissions. However, static role assignments in traditional RBAC systems often become misaligned with evolving organizational structures and user behaviors, leading to inefficiencies and potential security risks. This paper explores a predictive enhancement to RBAC policies by analyzing historical access logs using Hierarchical Clustering (HCL) techniques. The proposed approach uncovers behavioral access patterns to support data-driven refinement of role assignments. By incorporating behavioral clustering into access control workflows, the method helps align permissions with observed usage trends and may reduce excessive privilege assignments. Evaluation on a real-world dataset demonstrates that the model adapts roles based on access behavior, offering a step toward more responsive and behavior-aware access governance.

AB - Access control is vital for protecting organizational resources, with Role-based access control (RBAC) offering a widely adopted framework for managing permissions. However, static role assignments in traditional RBAC systems often become misaligned with evolving organizational structures and user behaviors, leading to inefficiencies and potential security risks. This paper explores a predictive enhancement to RBAC policies by analyzing historical access logs using Hierarchical Clustering (HCL) techniques. The proposed approach uncovers behavioral access patterns to support data-driven refinement of role assignments. By incorporating behavioral clustering into access control workflows, the method helps align permissions with observed usage trends and may reduce excessive privilege assignments. Evaluation on a real-world dataset demonstrates that the model adapts roles based on access behavior, offering a step toward more responsive and behavior-aware access governance.

KW - Access Log Analytics

KW - Hierarchical Clustering

KW - Machine Learning

KW - Predictive Access Control

KW - Role-Based Access Control (RBAC)

UR - https://www.scopus.com/pages/publications/105023392381

U2 - 10.1007/978-3-032-10759-6_21

DO - 10.1007/978-3-032-10759-6_21

M3 - Conference contribution

AN - SCOPUS:105023392381

SN - 9783032107589

T3 - Lecture Notes in Computer Science

SP - 314

EP - 325

BT - Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings

A2 - Akavia, Adi

A2 - Dolev, Shlomi

A2 - Lysyanskaya, Anna

A2 - Puzis, Rami

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 4 December 2025 through 5 December 2025

ER -

Amour S, Gudes E. Predictive Enhancement of RBAC Policies Using Access Log Analytics: (Short Paper). In Akavia A, Dolev S, Lysyanskaya A, Puzis R, editors, Cyber Security, Cryptology, and Machine Learning - 9th International Symposium, CSCML 2025, Proceedings. Springer Science and Business Media Deutschland GmbH. 2026. p. 314-325. (Lecture Notes in Computer Science). doi: 10.1007/978-3-032-10759-6_21