Spatio temporal emergency role based access control (STEM-RBAC): A time and location aware role based access control model with a break the glass mechanism

“…RBAC allows users to access information related to the specific roles that they have been assigned. In real-life settings, RBAC may not be appropriate because of conflicts that may occur between roles [2][3][4][5]. The characteristics, merits, and demerits of access control techniques are set forth in Table 1.…”

“…General wireless security threats that may occur in business and social life using mobile devices include rogue evil twin APs, ad hoc networks, RF jamming, deauthentication, MAC spoofing, WEP key cracking, and sniffing [1,2]. Table 2 classifies wireless security threats with respect to confidentiality, integrity, and availability (three elements of security) that may occur in business and social life using mobile devices.…”

“…These involve illegal changes and deletions in data and forged data insertion during wireless communication transmission between mobile To reduce false-positive ratesand system loads in business and social settings where diverse mobile devices, roles, and environments exist, the mobile-intrusion prevention system (m-IPS) is needed toensure better access control based on temporal, spatial, and contextual roles for efficiency and security. The access control should be able to respond to diverse exceptions that may occur in offices [2,5,6].…”

“…Another approach is to define permissions that should consider the static and dynamic behavior of context constraints. Based on this, the adoption of the existing well-known access control models and technologies is sensible as it provides a means to extend from traditional to context-based access control policies and facilitates obligation policies enforcement [2,3,12].…”

“…Furthermore, business/work environments are too diversified to enable accurate detection and prevention of attacks. In essence, the same rules cannot be applied to all mobile business devices because of considerations of time, space, and individual roles [1,2]. In this wireless IPS study, trends and related security threats and requirements in mobile business work environments are discussed.…”

An Efficient and Securem-IPS Scheme of Mobile Devices for Human-Centric Computing

“…RBAC allows users to access information related to the specific roles that they have been assigned. In real-life settings, RBAC may not be appropriate because of conflicts that may occur between roles [2][3][4][5]. The characteristics, merits, and demerits of access control techniques are set forth in Table 1.…”

“…General wireless security threats that may occur in business and social life using mobile devices include rogue evil twin APs, ad hoc networks, RF jamming, deauthentication, MAC spoofing, WEP key cracking, and sniffing [1,2]. Table 2 classifies wireless security threats with respect to confidentiality, integrity, and availability (three elements of security) that may occur in business and social life using mobile devices.…”

“…These involve illegal changes and deletions in data and forged data insertion during wireless communication transmission between mobile To reduce false-positive ratesand system loads in business and social settings where diverse mobile devices, roles, and environments exist, the mobile-intrusion prevention system (m-IPS) is needed toensure better access control based on temporal, spatial, and contextual roles for efficiency and security. The access control should be able to respond to diverse exceptions that may occur in offices [2,5,6].…”

“…Another approach is to define permissions that should consider the static and dynamic behavior of context constraints. Based on this, the adoption of the existing well-known access control models and technologies is sensible as it provides a means to extend from traditional to context-based access control policies and facilitates obligation policies enforcement [2,3,12].…”

“…Furthermore, business/work environments are too diversified to enable accurate detection and prevention of attacks. In essence, the same rules cannot be applied to all mobile business devices because of considerations of time, space, and individual roles [1,2]. In this wireless IPS study, trends and related security threats and requirements in mobile business work environments are discussed.…”

An Efficient and Securem-IPS Scheme of Mobile Devices for Human-Centric Computing

Dynamic and Personalized Access Control to Electronic Health Records

Continuous and transparent access control framework for electronic health records: A preliminary study