Performance evaluation of a rule-based access control framework

Afonin, Sergey

doi:10.1109/mipro.2016.7522361

Cited by 4 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A depth of relationship is the shortest path, corresponding to a relationship between two users. Model-transformation enhances flexibility to RuleBAC [46,57].…”

Section: Rule-based Access Controlmentioning

confidence: 99%

Access Control Models

Penelova

2021

Cybernetics and Information Technologies

View full text Add to dashboard Cite

Access control is a part of the security of information technologies. Access control regulates the access requests to system resources. The access control logic is formalized in models. Many access control models exist. They vary in their design, components, policies and areas of application. With the developing of information technologies, more complex access control models have been created. This paper is concerned with overview and analysis for a number of access control models. First, an overview of access control models is presented. Second, they are analyzed and compared by a number of parameters: storing the identity of the user, delegation of trust, fine-grained policies, flexibility, object-versioning, scalability, using time in policies, structure, trustworthiness, workflow control, areas of application etc. Some of these parameters describe the access control models, while other parameters are important characteristics and components of these models. The results of the comparative analysis are presented in tables. Prospects of development of new models are specified.

show abstract

“…A depth of relationship is the shortest path, corresponding to a relationship between two users. Model-transformation enhances flexibility to RuleBAC [46,57].…”

Section: Rule-based Access Controlmentioning

confidence: 99%

Access Control Models

Penelova

2021

Cybernetics and Information Technologies

View full text Add to dashboard Cite

show abstract

“…This approach allows the mechanism of access to digital resources to be more flexible and more complex in accordance with the needs of the interaction. Among the many models for Access Control Policy, such as Discretionary Access Control (DAC) [13], mandatory access control (MAC), Access Control List (ACL) [14], and Rule Based Access Control (RBAC) [15] and one of them is the ABAC (Attribute) model Based Access Control) [16]. This model is based on attribute verification and is believed to be an access control model that is adaptive to the access policy needs of various digital resources in the future.…”

Section: Abac (Attribute Base Access Control)mentioning

confidence: 99%

“…Access control is in principle a mechanism to limit operations or action on a computer system only on legitimate users. Next according to [15,16], there are 4 main issues in access control, namely identification, authentication, authorization and access decisions. The short explanation is as following: 1.…”

Section: Access Controlmentioning

confidence: 99%

Two Fold Security on Cloud CRM using Hash Encryption and Role Based Security

Kumar¹

2020

IJATCSE

View full text Add to dashboard Cite

Virtually all companies today are existentially dependent on information and communication technology over the cloud computing. At the same time, the degree of networking between actors in business -companies, customers and government institutions -has risen steadily. This enables completely new, high-value-added applications, but at the same time poses new risks for the trouble-free functioning of a company's critical processes and the confidentiality of the stored, processed and transmitted data. In high-wage countries like India, companies are particularly forced to protect their own know-how and intellectual property well against competitors. Entrepreneurs who are concerned with knowing risks and evaluating measures to control them must therefore be able to address the challenges of effective information protection and be able to classify procedures that make an important contribution to this. The encryption of information is an effective technical procedure for this task. However, it is not an easy undertaking for a company to design an adequate overall concept for the use of encryption, since these methods can be used at very different levels of information technology and their use must be planned across processes. This scheme is intended to help overcome the obstacles to the efficient and effective use of encryption in the company using new enhanced hashing algorithm. It is designed to inform companies about how encryption helps to protect the confidentiality of information when using modern information and communication technology. It shows in which areas of application and against which attacks encryption is useful and how the various encryption methods can be meaningfully combined. This scheme is manufactured for managing directors, department heads and other decision-makers who want to familiarize themselves with the use of encryption technology in order to plan steps for designing an encryption architecture that makes sense for their company. Small and medium-sized companies in particular are in the spotlight, since they too are the focus of industrial espionage and they also have a higher risk that the loss of confidentiality of sensitive information will jeopardize their existence. We hereby introduce the new approach in the paradigm of cryptology (Role Based Security and Hashing Technique) in cloud computing for CRM solution with the name of H#ABE.

show abstract

Methods of Data Processing Restriction in ERP Systems

Zhezhnych

Tarasov

2018

2018 IEEE 13th International Scientific and Technical Conference on Computer Sciences and Information Technologies (CSIT)

View full text Add to dashboard Cite

Performance evaluation of a rule-based access control framework

Cited by 4 publications

References 11 publications

Access Control Models

Access Control Models

Two Fold Security on Cloud CRM using Hash Encryption and Role Based Security

Methods of Data Processing Restriction in ERP Systems

Contact Info

Product

Resources

About