A Multi-policy Model for Access Control in Cooperative Information Systems

2012 ◽  
Author(s):  
L. Huin ◽  
E. Disson ◽  
D. Boulanger
Keyword(s):  
Information Systems ◽  
Access Control ◽  
Policy Model ◽  
Cooperative Information Systems

scholarly journals Assessing Threats and Vulnerable Attacks of Health Care Data in Cloud-Based Environment

2019 ◽  
Vol 8 (2) ◽  
pp. 567-573
Keyword(s):  
Information Systems ◽  
Access Control ◽  
Service Providers ◽  
Universal Access ◽  
Cloud Service ◽  
Medical Attention ◽  
Medical Systems ◽  
Medical Practitioners ◽  
Mandatory Requirement ◽  
The Impact

What: Healthcare industries have been unified with the advent of cloud computing and Internet of Medical Things in recent past. How: As simplicity in access and transfer of medical reports increased, so does the impact of losing potential information. Adopting a cloud environment has eased the work of medical practitioners and provided world class medical attention to patients from remote corners of a nation. It has added the responsibility of cloud service providers to improvise the existing standards for protecting information in a virtual platform. A number of benefits not limitedto universal access, advice from renowned medical experts for deciding on diagnosis plan, alerting patients and hospitals in real timeand reducing the workload of labor are achieved by cloud environments. Hospital Information Systems (HIS) are the evolved data forms maintained manually in medical institutions and they are preferred in a cloud platform to improve interoperability. The information carried in such medical systems possesses critical information about patients that need to be protected over transmission between independent environments. This becomes a mandatory requirement for designing and implementing an access control mechanism to identify intention of users who enter into the environment. Relaxations in access control architectures will compromise the security of entire architecture and practice. Why: Intention - Demand Tree is proposed in this paper to limit the access rights of users based on their roles, requirements and permissions to monitor the usage of Health Information Systems. Investigative results illustrate that the risks of losing credible information has been limited and convenient than previous standards.

An Attribute-Based Cross-Domain Access Control Model for a Distributed Multiple Autonomous Network

2020 ◽  
Vol 30 (11n12) ◽  
pp. 1851-1865
Author(s):  
Yunpeng Zhang ◽  
Xin Liu
Keyword(s):  
Access Control ◽  
Domain Boundary ◽  
Control Process ◽  
Control Model ◽  
Main Trend ◽  
Security Risk ◽  
Access Control Model ◽  
Policy Model ◽  
Cross Domain ◽  
Autonomous Network

The distributed multiple autonomous network has become the main trend of modern information systems, such as Cloud, Service-Oriented Architecture (SOA) and Internet of Things (IoT). Access control in such a heterogeneous and dynamic system has become a major information security challenge, which hinders the sharing of resources and information. In this work, we present an Attribute-Based Access Control (ABAC) model for cross-domain access control. The proposed access control model comprises a boundary control server designed to provide cross-domain access control capability. An eXtensible Access Control Markup Language (XACML) policy model-based implementation is introduced. Process and implementation show the proposed model alleviates the security risk on the domain boundary during the cross-domain access control process.

Location-Aware Access Control for Mobile Workflow Systems

2011 ◽  
pp. 44-62 ◽  
Author(s):  
Michael Decker
Keyword(s):  
Information Systems ◽  
Access Control ◽  
Business Processes ◽  
Workflow Management ◽  
Mobile Technologies ◽  
Special Focus ◽  
Wireless Data ◽  
Workflow Systems ◽  
Location Aware ◽  
Wireless Data Transmission

Workflow management systems (WfMS) are a special class of information systems (IS) which support the automated enactment of business processes. Meanwhile there are WfMS which allow the execution of tasks using mobile computers like PDA with the ability of wireless data transmission. However, the employment of workflow systems as well as mobile technologies comes along with special security challenges. One way to tackle these challenges is the employment of location-aware access control to enforce rules that describe from which locations a user is allowed to perform which activities. The data model behind access control in termed Access Control Model (ACM). There are special ACM for mobile information systems as well as for WfMS, but no one that addresses mobile as well as workflow specific aspects. In the article we therefore discuss the specific constraints such a model should be able to express and introduce an appropriate ACM. A special focus is on location constraints for individual workflow instances.

Sign in / Sign up

Export Citation Format

Share Document