Abstract: “Inconsistency in access control policies exists when two or more than two rules defined in the policy set lead to the contradictory decisions. It makes it difficult for the system to decide which rule is applicable to the current scenario and hence make the system vulnerable to the unauthorized use. Different inconsistency detection methods have been proposed by researchers. However, those suffer from various limitations. In this article, we propose an algorithm that detects the inconsistencies in the policies using decision trees and returns the inconsistent rules with contradictory attribute values”

Keywords: access control, inconsistency detection, policy validation