scholarly journals Components- Based Access Control Architecture

10.28945/3374 ◽  
2009 ◽  
Author(s):  
Adesina Sodiya ◽  
Adebukola Onashoga
Keyword(s):  
Access Control ◽  
Control Mechanism ◽  
Control Architecture ◽  
Role Based Access Control ◽  
Appropriate Use ◽  
Control Techniques ◽  
Use Of Resources ◽  
Control Scheme ◽  
Access Control Mechanism ◽  
Role Based

Ensuring adequate security of information has been a growing concern of individuals and organizations. There is then the need to provide suitable access control mechanism for preventing insider abuses and ensuring appropriate use of resources. This paper presents an access control scheme that adopts the techniques of Role-Based Access Control (RBAC), Purpose-Based Access Control (PBAC), Time-Based Access Control (TBAC) and History-Based Access Control (HBAC) as components to form an integrated Components-based Access Control Architecture (CACA). In CACA, an Access Control Score (ACS) is computed from the combined access control techniques. CACA also combines ACS with the sensitivity nature of system resources before a level of access is granted. The architecture was implemented within a payroll system developed using JAVA and SQL. Using usability testing, the evaluation of CACA showed 92% reduction in insider abuses and misuse of privileges. This shows that CACA can provide higher level of security access as against what used to exist.

scholarly journals An Enhancement Role and Attribute Based Access Control Mechanism in Big Data

2018 ◽  
Vol 8 (5) ◽  
pp. 3187
Author(s):  
M Meneka ◽  
K. Meenakshisundaram
Keyword(s):  
Big Data ◽  
Access Control ◽  
Control Mechanism ◽  
Security Policies ◽  
Role Based Access Control ◽  
Control Mechanisms ◽  
Computational Overhead ◽  
Access Control Mechanism ◽  
Attribute Based Access Control ◽  
Role Based

To be able to leverage big data to achieve enhanced strategic insight and make informed decision, an efficient access control mechanism is needed for ensuring end to end security of such information asset. Attribute Based Access Control (ABAC), Role Based Access Control (RBAC) and Event Based Access Control (EBAC) are widely used access control mechanisms. The ABAC system is much more complex in terms of policy reviews, hence analyzing the policy and reviewing or changing user permission are quite complex task. RBAC system is labor intensive and time consuming to build a model instance and it lacks flexibility to efficiently adapt to changing user’s, objects and security policies. EBAC model considered only the events to allocate access controls. Yet these mechanisms have limitations and offer feature complimentary to each other. So in this paper, Event-Role-Attribute based fine grained Access Control mechanism is proposed, it provide a flexible boundary which effectively adapt to changing user’s, objects and security policies based on the event. The flexible boundary is achieved by using temporal and environment state of an event. It improves the big data security and overcomes the disadvantages of the ABAC and RBAC mechanisms. The experiments are conducted to prove the effectiveness of the proposed Event-Role-Attribute based Access Control mechanism over ABAC and RBAC in terms of computational overhead.

A Hierarchical Access Control Scheme Based on Lagrange Interpolation and ELGamal Algorithm with Numerical Experiments

2013 ◽  
Vol 385-386 ◽  
pp. 1705-1707
Author(s):  
Tzer Long Chen ◽  
Yu Fang Chung ◽  
Jian Mao Hong ◽  
Jeng Hong Jhong ◽  
Chin Sheng Chen ◽  
...  
Keyword(s):  
Access Control ◽  
Lagrange Interpolation ◽  
Control Mechanism ◽  
Key Generation ◽  
Electronic Documents ◽  
Control Scheme ◽  
Video Systems ◽  
Efficient Scheme ◽  
On Line ◽  
Access Control Mechanism

It is important to notice that the access control mechanism has been widely applied in various areas, such as on-line video systems, wireless network, and electronic documents. We propose an access control mechanism which is constructed based on two mathematical fundamentals: Lagrange interpolation and ElGamal algorithm. We conduct performance analysis to compare the efficiency of our proposed scheme with that of several related published schemes in both key generation phase and key derivation phase. Our new scheme is proven to be more efficient. It is shown, as expected, a more efficient scheme provides relatively less security and a more secure scheme is relatively less efficient for private keys of the same size.

Sign in / Sign up

Export Citation Format

Share Document