Negative Authorization by Implementing Negative Attributes in Attribute-Based Access Control Model for Internet of Medical Things

Aftab, Muhammad Umar; Qin, Zhiguang; Hussain, Kashif; Jamali, Zakria; Son, Ngo Tung; Nam, Nguyen Van; Dinh, Tran Van

doi:10.1109/skg49510.2019.00036

Cited by 4 publications

(5 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This implies that users are not explicitly granted authorizations but rather obtain them through their allocated profession function or responsibilities, meaning whether someone enters the business, switches offices, goes on leave, or leaves the company, their access rights are easy to handle and stay in charge. Instead of addressing user access rights at a granulated level, operator access rights are combined into several positions across different systems [31]. This means that you mechanically have one set (combination) of defined access rights if your effort in the Finance team, which is different from if you work in the marketing team.…”

Section: Materials and Proposed Methodsmentioning

confidence: 99%

Integration of Identity Governance and Management Framework within Universities for Privileged Users

Parveen¹,

Ahmad²,

Khan³

2021

IJACSA

View full text Add to dashboard Cite

The development of high-tech progression around the world, with the attentions of governance body and private companies towards well-organized setup access control measures within the organization. The importance of these exceedingly essential perception, this article is proposing an integrated approach with the assimilation of IAM (identity access management) as an authentication tool and PAM (privilegd access management) as a restricting accessing control measure in terms of an active directory. Originally the experimental setup organized within the Prince Sattam Bin Abdulaziz University, and it is analyzed using the real-time data which is available within the university database. We found that the proposed mechanism can be a vital method for protecting governance data or key business-oriented data from the unauthorized or adversarial attack. We also reviewed and compared other access control methods and find that the integrated method is relatively have an advantage to deal accessing task in any premier organization.

show abstract

Section: Materials and Proposed Methodsmentioning

confidence: 99%

Integration of Identity Governance and Management Framework within Universities for Privileged Users

Parveen¹,

Ahmad²,

Khan³

2021

IJACSA

View full text Add to dashboard Cite

show abstract

“…Access control is a technique to avoid unauthorized access to resources by illegal users while determining the adequate authority levels for authorized users [73,74]. In the case of IoMT systems, access control enables users to restrict access to IoMT devices by defining access levels for each user [5].…”

Section: Access Controlmentioning

confidence: 99%

A review on security threats, vulnerabilities, and counter measures of 5G enabled Internet‐of‐Medical‐Things

et al. 2021

View full text Add to dashboard Cite

The recent advancements of Internet of Things (IoT) embedded systems, wireless networks, and biosensors those have assisted in the rapid development of implanting wearable sensors are reviewed here. The applications of the internet of medical things (IoMT) that has gained major attention as an ecosystem of connected clinical systems, computing systems, and medical sensors geared towards improving the quality of healthcare services are also reviewed here. The 5G based AI technology can revolute the perception of healthcare and lifestyle. In light of the importance of IoT platforms and 5G networks, the purpose of this proposed research work is to identify threats that could undermine the integrity, privacy, and security of IoMT systems. Also, the novel blockchain‐based approaches that can help in improving the confidentiality of IoMT network. It has been discovered that IoMT is vulnerable to various types of attacks, including denial of service (DoS), malware, and eavesdropping attack. In addition, IoMT is exposed to various vulnerabilities, such as security, privacy, and confidentiality. Despite multiple security threats, there are novel cryptographic techniques, such as access control, identity authentication, and data encryption that can help in improving the security and reliability of IoMT devices.

show abstract

“…In order to reconcile the respective problems of RBAC and ABAC, some researchers have tried to mix the two models. Aftab et al proposed a hybrid R-ABAC access control, which uses a combination of attribute values to generate roles, thus solving the problem of permission assignment present in ABAC and RBAC [33][34][35][36]. e flexibility of the ABAC model was also introduced in the RBAC model by adding the concept of negative authorization [37].…”

Section: Related Workmentioning

confidence: 99%

“…To enhance ABAC security by adding unique attribute values ABAC makes the overall model more difficult to manage as the number of attributes increases. Second, the large number of permission units generated by many attributes is difficult to track [33][34][35][36][37][38] Use the characteristics of RBAC privilege encapsulation to manage many attributes in ABAC, thus reconciling the disadvantages of each Many unordered attribute aggregation units can make the mixed access control model create the problem of role explosion. But, too little attribute aggregation units can create the problem of insufficient granularity of permissions in RBAC [39][40][41] Enhance the dynamics of various access control mechanisms using priority mechanisms.…”

Section: Permission Adjust Requirements In the Emergencies Of Thementioning

confidence: 99%

Service-Based Hybrid Access Control Technology with Priority Level for the Internet of Vehicles under the Cloud Architecture

Xie

Yang

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

The communication process of devices in IoV under cloud architecture needs to be protected by access control models. However, existing access control models have difficulty establishing the appropriate granularity of permissions in the face of large amounts of data in IoV. Moreover, the access control model may need to temporarily change user privileges to accommodate the dynamic nature of IoV scenarios, a requirement that is difficult to implement for traditional access control models. The unstable connection status of devices in IoV also creates problems for access control. The service (composed of role and attribute) based access control model (in IoV) S-RABAC (V), under the Cloud computing architecture, introduces a formal theoretical model. The model uses attribute grouping and prioritization mechanisms to form a hierarchical structure. The permission combination pattern in the hierarchical structure can avoid duplicate permissions and reduce the number of permissions while ensuring fine-grained permissions. Different layers in the model have different priorities, and when a user’s permission requires temporary changes, it can be adjusted to the corresponding layers according to the user’s priority. In addition, users are allowed to keep their assigned privileges for a period to avoid frequent access control because of unstable connections. We have implemented the proposed access control model in Alibaba Cloud Computing and given six example demonstrations. The experiment shows that this is an access control model that can protect IoV security more effectively. Various unique mechanisms in the model enable S-RABAC(V) to improve the overall access control efficiency. The model adds some extra features compared to ABAC and RBAC and can generate more access control decisions using the priority mechanism.

show abstract

Negative Authorization by Implementing Negative Attributes in Attribute-Based Access Control Model for Internet of Medical Things

Cited by 4 publications

References 23 publications

Integration of Identity Governance and Management Framework within Universities for Privileged Users

Integration of Identity Governance and Management Framework within Universities for Privileged Users

A review on security threats, vulnerabilities, and counter measures of 5G enabled Internet‐of‐Medical‐Things

Service-Based Hybrid Access Control Technology with Priority Level for the Internet of Vehicles under the Cloud Architecture

Contact Info

Product

Resources

About