Generation of Human Comprehensible Access Control Policies from Audit Logs

ArXi:2603.14341v1 Announce Type: cross Over the years, access control systems have become increasingly complex, often causing a disconnect between what is envisaged by the stakeholders in decision-making positions and the actual permissions granted as evidenced from access logs. For instance, Attribute-based Access Control (ABAC), which is a flexible yet complex model typically configured by system security officers, can be made understandable to others only when presented at a high level in natural language.