Optimization of Access Control Policies

Kern, Sascha; Baumer, Thomas; Groll, Sebastian; Fuchs, Ludwig; Pernul, Günther

doi:10.1016/j.jisa.2022.103301

Cited by 7 publications

(3 citation statements)

References 91 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This condition occurs when the user should have permissions in the form of a permit, but the evaluation output produces a value in the form of denial, and vice versa. From the aspect of computer security, in the opinion of [21], [30], attacks against the system occur because of inconsistencies in the implementation of access control.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

ABAC as Access Control Solution for Digital Evidence Storage

Priyambodo,

Prayudi,

Budiarto

2024

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

Digital evidence is content that must be protected against access and use by parties who should not have the authority to do so. Some protection parameters for access to digital evidence must be implemented to ensure its integrity and authenticity. Access to digital evidence is not enough to be facilitated only with authorization and authentication mechanisms but must also be facilitated with other aspects of access by users according to their level of authority. One approach is to use the concept of access control. The study of access control to digital evidence is essential. However, studies on this matter are still limited. Among the many access control models, the application of access control based on attribute variations is a concept that can be applied to the context of access to digital evidence. This paper discusses policy design and modeling using attribute-based access control (ABAC) with four attributes: subject, resource, action, and environment. Then, it implements and tests various requests to the system based on attribute variations and possible algorithms. This study supports the security of digital evidence storage systems through access control to the resources it manages using the Policy Statement, Policy Modeling, Policy Implementation, and Policy Validation approaches. The application of the access control design shows that the ABAC concept has been successfully applied as an access control solution for digital evidence stored in digital evidence storage systems. The built policy design was successfully validated using ACPT Tools, concluding that there was no inconsistency or incompleteness.

show abstract

Section: Resultsmentioning

confidence: 99%

“…Access control is a mechanism to limit the operation or action of a computer system to only legitimate users [21]. Meanwhile, access control has four main issues: identification, authentication, authorization, and access decisions.…”

Section: Methodsmentioning

confidence: 99%

ABAC as Access Control Solution for Digital Evidence Storage

Priyambodo,

Prayudi,

Budiarto

2024

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

show abstract

“…Again, it is very important that a medical report containing sensitive data about a user can not be accessible by other users. Effective ways to achieve confidentiality are encryption [161], access control mechanisms [162], or a combination of both [163]. • Integrity.…”

Section: ) Security Propertiesmentioning

confidence: 99%

The Next Generation of eHealth: A Multidisciplinary Survey

et al. 2022

View full text Add to dashboard Cite

Over the past two years, the spread of COVID-19 has spurred the use of information and communication technologies (ICT) in aid of healthcare. The need to guarantee continuity to care has promoted research and industry activities aimed at developing solutions for the digitalization of the procedures to be performed to provide health services, even in emergency scenarios. Digital collection, transmission, and processing of health data represent the starting point for fulfilling this innovation process but also bring heterogeneous challenges. These motivations led to the elaboration of this work, which analyzes innovative and technological tools for the development of digital health (eHealth) through the collection of multisectoral literature, produced thanks to the cooperation of varied research groups, thus providing a multidisciplinary survey. Since digital health is expected to be one of the leading applications of the sixth-generation (6G) wireless cellular networks, this paper covers the related telecommunications aspects. Furthermore, the exploitation of artificial intelligence paradigms to elaborate massive amounts of biological data is examined. Given the extreme sensitivity of health data, this paper also investigates security and privacy issues. In particular, the main techniques and approaches to guarantee security properties (i.e., anonymity, responsibility, authentication, confidentiality, integrity, non-repudiation, and revocability) are studied. Applications involving innovative electromagnetic systems for healthcare and assisted living services are described to provide an example of an eHealth scenario leveraging ICT. Finally, the telemedicine-related regulations of the European Commission are analyzed, with particular reference to the General Data Protection Regulation (GDPR).

show abstract