A Context Authentication Service for Role Based Access Control in Distributed Systems - CARDS

Holbein, Ralph; Teufel, Stephanie

doi:10.1007/978-0-387-34873-5_21

Cited by 7 publications

(3 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A privacy-enhanced access control scheme that optionally integrates context in pervasive environments is developed by Ren and Lou (2007). Hohlbein and Teufel address the issue of authorised persons misusing the system by introducing a role-based access control scheme that uses a need-to-know basis (Holbein and Teufel 1995). In addition to that, context information can be used to determine the security level of a network, as proposed by Duque , or to perform attribution of attacker types, as presented by Fraunholz et al (Fraunholz et al 2017a;Fraunholz et al 2017c).…”

Section: Related Workmentioning

confidence: 99%

“…The challenges faced by authentication and authorisation, as well as solutions proposed by works presented above are listed in Table 3. (Bhatti et al 2004;Lima et al 2011; Govindan and Mohapatra 2012) Authentication for critical services (Aloul et al 2009) Multi-factor authentication for MANETs (Glynos et al 2005;Govindan and Mohapatra 2012) Privacy-preserving multifactor authentication (Bhargav-Spantzel et al 2017) Multi-factor authentication for pervasive environments (Ren and Lou 2007;Mayrhofer 2006;Mayrhofer and Gellersen 2007;Banyal et al 2013) Multi-factor authentication for fragile communication (Holbein and Teufel 1995;Bardram et al 2003;Kindberg et al 2002;Hulsebosch et al 2005;Mayrhofer and Gellersen 2007;Ren and Lou 2007;Lenzini 2009;Hayashi et al 2013;Primo et al 2014) Authorisation over constrained channels (Kindberg and Zhang 2001;Kindberg et al 2002) Survey (Dasgupta et al 2017) Context-aided intrusion detection (Fraunholz et al 2017a;Fraunholz et al 2017b;Fraunholz et al 2017c; Duque Anton et al…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Putting Things in Context: Securing Industrial Authentication with Context Information

Antón¹,

Fraunholz²,

Lipps³

et al. 2018

IJCSA

View full text Add to dashboard Cite

The development in the area of wireless communication, mobile and embedded computing leads to significant changes in the application of devices. Over the last years, embedded devices were brought into the consumer area creating the Internet of Things. Furthermore, industrial applications increasingly rely on communication through trust boundaries. Networking is cheap and easily applicable while providing the possibility to make everyday life more easy and comfortable and industry more efficient and less time-consuming. One of the crucial parts of this interconnected world is sound and secure authentication of entities. Only entities with valid authorisation should be enabled to act on a resource according to an access control scheme. An overview of challenges and practices of authentication is provided in this work, with a special focus on context information as part of security solutions. It can be used for authentication and security solutions in industrial applications. Additional information about events in networks can aid intrusion detection, especially in combination with security information and event management systems. Finally, an authentication and access control approach, based on context information and-depending on the scenariomultiple factors is presented. The combination of multiple factors with context information makes it secure and at the same time case adaptive, so that the effort always matches, but never exceeds, the security demand. This is a common issue of standard cyber security, entities having to obey strict, inflexible and unhandy policies. This approach has been implemented exemplary based on RADIUS. Different scenarios were considered, showing that this approach is capable of providing flexible and scalable security for authentication processes.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Putting Things in Context: Securing Industrial Authentication with Context Information

Antón¹,

Fraunholz²,

Lipps³

et al. 2018

IJCSA

View full text Add to dashboard Cite

show abstract

“…Security and flexibility are the two most important aspects in electronic business system [10,11,19]. Role-Base Access Control (RBAC) model [20] is a promising alternative to traditional discretionary and mandatory access control (DAC and MAC) model, which is regarded as a neutral policy and has been used in a variety of forms for computer system security.…”

Section: Introductionmentioning

confidence: 99%

Pres

Sun

Pan

2005

Proceedings of the 7th International Conference on Electronic Commerce - ICEC '05

View full text Add to dashboard Cite

Web-based workflow can be used to facilitate enterprise business process while the security and flexibility are two of the most important aspects in electronic business system. RBAC is regarded as a neutral policy and has been the most popular secure model in recent years. The flexible RBAC workflow model (FRWM) has been proposed recently. It has encapsulated RBAC and workflow together considering both security and flexibility features. In this paper the enforcement of FRWM is introduced. We also present the design and implementation of a practical system for Property Right Exchange (PRES) based on FRWM, in which the flexibility of workflow can be reached through definition and execution while considering the security with RBAC.

show abstract