A Multi-Modal Simulator for ABAC Systems
Required fields: subject_size, object_size,
environment_size, permit_rules_count, deny_rules_count.
Attribute value arrays accept a plain number or a [count, stars] pair.
New here? See Help & Guide.
Create synthetic access logs by sampling the completed simulation's Access Control Matrix (ACM). Logs download as CSV with columns: subject, object, environment, access (permit/deny).
How many access records to sample. Range: 1 to 1,000,000.
Share of generated rows that should be permit (allow). Range: 0 to 99.9.
MuSimA generates synthetic ABAC datasets — subjects, objects, environments, their attributes, a set of permit/deny policy rules, and the resulting Access Control Matrix — plus optional synthetic access logs. Pick a workflow below.
SA-1, SA-2, … (subjects), OA-1, … (objects),
EA-1, … (environment). Zip them together.| Field | Meaning |
|---|---|
subject_size, object_size,
environment_size |
Required. Number of distinct subjects / objects / environments. |
permit_rules_count, deny_rules_count |
Required. How many access-granting (permit) and access-blocking (deny) policy rules to generate. |
subject_attributes_count (and object/environment) |
Number of attributes per entity type. |
subject_attributes_values (and object/environment) |
One entry per attribute: a number = how many possible values, or a
[count, stars] pair to also add wildcards. |
global_stars |
Default wildcard count applied to plain-number attribute entries. |
subject_distributions (and object/environment) |
One entry per attribute: "N" Normal (mean,
variance), "P" Poisson (lambda), or
"U" Uniform. |
seed, sampling_config, correlations |
Optional / advanced: reproducibility, calibration tolerances, and attribute correlation targets. |
[count, stars] formatIn any attribute-values array, an entry can be a plain number (5 = five
concrete values) or a pair ([5, 2] = five values plus two wildcard
* slots). Wildcards make a rule match any value for that attribute, so a higher
star count yields broader, less specific rules. [4, 0] disables wildcards for
that attribute.
output.json — full ABAC system: S/O/E identifiers, attribute names &
possible values, per-entity assignments, and the generated rules.ACM.txt — Access Control Matrix as 0/1 over
Subjects × Objects × Environments (1 = allowed).access_data.txt — flattened access records (attribute columns +
decision), ready for ML.distribution_attestations/plots/ — expected vs. actual attribute
distributions.distribution_attestations/comparisons/ — sketch vs. realized plots
(multimodal runs only).After a simulation completes, the Generate Logs tab unlocks. Choose how many records to sample and the percentage that should be permit, then download the result as CSV. Logs are sampled from the completed run's Access Control Matrix.