scholarly journals Towards Policy Enforcement Point as a Service (PEPS)

2016 ◽  
Author(s):  
Arash Shaghaghi ◽  
Mohamed Ali Kaafar ◽  
Sandra Scott-Hayward ◽  
Salil S. Kanhere ◽  
Sanjay Jha
Keyword(s):  
Policy Enforcement ◽  
Policy Enforcement Point

scholarly journals Cloud-Based Access Control Framework for Effective Role Provisioning in Business Application

2020 ◽  
Vol 9 (1) ◽  
pp. 63-80
Author(s):  
Auxilia M. ◽  
Raja K. ◽  
Kannan K.
Keyword(s):  
Access Control ◽  
Information Sharing ◽  
Policy Enforcement ◽  
Large Set ◽  
Business Organization ◽  
Secure Information ◽  
Control Framework ◽  
Business Application ◽  
Effective Role ◽  
Policy Enforcement Point

In the evolution of social networks and big data, secure information sharing is a crucial task. When information is shared between the user and the organization admin, security plays a key role in any business organization in terms of privacy. Though many fruitful solutions prevail to protect the data integrity and privacy, there is a huge space for novel data protection schemes where a large set of data are involved. In this article, the Cloud-Based Access Control (C-BAC) framework is proposed which can fit in any business organization application. In this C-BAC, Policy Enforcement Point (PEP) is used to avoid unwanted information sharing with the neighboring employee. C-BAC framework with RSA provides security, based on the number of employees with the data handled by the particular employee, better than the existing access control framework with asymmetric encryption standard (AES) and Rivest–Shamir–Adleman (RSA) in terms of individual information handling.

scholarly journals PEP4Django A Policy Enforcement Point for Python Web Applications

2019 ◽  
Author(s):  
Carlos Eduardo Da Silva ◽  
Welkson De Medeiros ◽  
Silvio Sampaio
Keyword(s):  
Access Control ◽  
Web Application ◽  
Web Applications ◽  
Policy Enforcement ◽  
Control Mechanisms ◽  
Business Logic ◽  
Control Policies ◽  
Control Rules ◽  
Access Control Policies ◽  
Policy Enforcement Point

Traditionally, access control mechanisms have been hard-coded into application components. Such approach is error-prone, mixing business logic with access control concerns, and affecting the flexibility of security policies, as is the case with IFRN SUAP Django-based system. The externalization of access control rules allows their decoupling from business logic, through the use of authorization servers where access control policies are stored and queried for computing access decisions. In this context, this paper presents an approach that allows a Django Web application to delegate access control decisions to an external authorization server. The approach has been integrated into an enterprise level system, which has been used for experimentation. The results obtained indicate a negligible overhead, while allowing the modification of access control policies without interrupting the system.

The Development of an Online Tobacco Tracker Tool to Crowdsource Campus Environmental Reports for Smoke and Tobacco Free College Policies: A Mixed Methods Study (Preprint)

2020 ◽  
Author(s):  
Sabrina F. Loureiro ◽  
Kim M. Pulvers ◽  
Melissa M. Gosdin ◽  
Keavagh R. Clift ◽  
Myra J. Rice ◽  
...  
Keyword(s):  
Mixed Methods ◽  
Focus Groups ◽  
Positive Reinforcement ◽  
The United States ◽  
College Campuses ◽  
Policy Enforcement ◽  
Sequential Mixed Methods ◽  
Effective Policy ◽  
Online Tracking ◽  
One Year

BACKGROUND College campuses in the United States have begun implementing Smoke and Tobacco-Free policies to discourage the use of tobacco. Smoke and Tobacco-Free policies, however, are contingent upon effective policy enforcement. OBJECTIVE To develop an empirically-derived online tracking tool (Tracker) for crowdsourcing campus environmental reports of tobacco use and waste to support smoke and tobacco-free college policies. METHODS An exploratory sequential mixed methods approach was utilized to inform the development and evaluation of the Tracker. In October 2018, three focus groups across two California universities were conducted and themes were analyzed, guiding Tracker development. After one year of implementation, users were asked in April 2020 to complete a survey about their experience. RESULTS In the focus groups, two major themes emerged: barriers and facilitators to tool utilization. Further Tracker development was guided by focus group input to address these barriers (e.g. information, policing, and logistical concerns) and facilitators (e.g. environmental motivators, positive reinforcement). Amongst 1,163 Tracker reports, those who completed the user survey (n=316) reported the top motivations to using the tool were having a cleaner environment (79%) and health concerns (69%). CONCLUSIONS Environmental concerns, a motivator which emerged in focus groups, shaped the Tracker’s development and was cited by the majority of users surveyed as a top motivator for utilization.

Sign in / Sign up

Export Citation Format

Share Document