Access control mechanisms have been adopted in many real-world systems to control resource sharing for the principals in the system. An error in the access control policy (misconfiguration) can easily cause severe data leakage and system exploitation. Researchers have developed several methodologies to detect the access control misconfigurations through data mining, testing, and verification for various applications. This survey will study the line of works to detect access control misconfigurations and discuss some future research directions.

翻译：访问控制机制已被广泛应用于诸多实际系统中，以控制系统主体间的资源共享。访问控制策略中的错误（误配置）极易导致严重的数据泄露和系统利用。研究者已开发出多种方法，通过数据挖掘、测试和验证等手段对各类应用中的访问控制误配置进行检测。本综述将研究访问控制误配置检测的相关工作，并探讨若干未来研究方向。