An Architecture for the Enforcement of Privacy and Security Requirements in Internet-Centric Services

2012 ◽  
Author(s):  
Yair Diaz-Tellez ◽  
Eliane L. Bodanese ◽  
Srijith K. Nair ◽  
Theo Dimitrakos
Keyword(s):  
Security Requirements ◽  
Privacy And Security

scholarly journals Improvement of Privacy and Security in Hybrid Cloud with Attribute Group Based Access Control

2019 ◽  
pp. 57-61
Author(s):  
Kayalvili S ◽  
Sowmitha V
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Data Storage ◽  
Service Providers ◽  
Cloud Service ◽  
Security Requirements ◽  
Security And Privacy ◽  
Data Outsourcing ◽  
Privacy And Security ◽  
Control Approach

Cloud computing enables users to accumulate their sensitive data into cloud service providers to achieve scalable services on-demand. Outstanding security requirements arising from this means of data storage and management include data security and privacy. Attribute-based Encryption (ABE) is an efficient encryption system with fine-grained access control for encrypting out-sourced data in cloud computing. Since data outsourcing systems require flexible access control approach Problems arises when sharing confidential corporate data in cloud computing. User-Identity needs to be managed globally and access policies can be defined by several authorities. Data is dual encrypted for more security and to maintain De-Centralization in Multi-Authority environment.

Privacy and Security in e-Health Applications

2012 ◽  
pp. 1141-1166
Author(s):  
Milan Petkovic ◽  
Luan Ibraimi
Keyword(s):  
Digital Technologies ◽  
Health Data ◽  
Security Requirements ◽  
Security And Privacy ◽  
Sensitive Information ◽  
Privacy And Security ◽  
Security Technologies ◽  
Technological Means ◽  
The Individual ◽  
Health Applications

The introduction of e-Health and extramural applications in the personal healthcare domain has raised serious concerns about security and privacy of health data. Novel digital technologies require other security approaches in addition to the traditional “purely physical” approach. Furthermore, privacy is becoming an increasing concern in domains that deal with sensitive information such as healthcare, which cannot absorb the costs of security abuses in the system. Once sensitive information about an individual’s health is uncovered and social damage is done, there is no way to revoke the information or to restitute the individual. Therefore, in addition to legal means, it is very important to provide and enforce privacy and security in healthcare by technological means. In this chapter, the authors analyze privacy and security requirements in healthcare, explain their importance and review both classical and novel security technologies that could fulfill these requirements.

A Survey of Authentication Schemes in the Internet of Things

2019 ◽  
Vol 6 (1) ◽  
pp. 15-30 ◽  
Author(s):  
Yasmine Labiod ◽  
Abdelaziz Amara Korba ◽  
Nacira Ghoualmi-Zine
Keyword(s):  
Internet Of Things ◽  
Security Requirements ◽  
Security And Privacy ◽  
The Internet ◽  
Privacy And Security ◽  
Depth Study ◽  
Authentication Schemes ◽  
Iot Devices ◽  
Privacy Issues ◽  
The Internet Of Things

In the recent years, the Internet of Things (IoT) has been widely deployed in different daily life aspects such as home automation, electronic health, the electric grid, etc. Nevertheless, the IoT paradigm raises major security and privacy issues. To secure the IoT devices, many research works have been conducted to counter those issues and discover a better way to remove those risks, or at least reduce their effects on the user's privacy and security requirements. This article mainly focuses on a critical review of the recent authentication techniques for IoT devices. First, this research presents a taxonomy of the current cryptography-based authentication schemes for IoT. In addition, this is followed by a discussion of the limitations, advantages, objectives, and attacks supported of current cryptography-based authentication schemes. Finally, the authors make in-depth study on the most relevant authentication schemes for IoT in the context of users, devices, and architecture that are needed to secure IoT environments and that are needed for improving IoT security and items to be addressed in the future.

scholarly journals A Secure Enhanced Non-Cooperative Cognitive Division Multiple Access for Vehicle-to-Vehicle Communication

Sensors ◽  
2020 ◽  
Vol 20 (4) ◽  
pp. 1000
Author(s):  
Mohammed Abdulhakim Al-Absi ◽  
Ahmed Abdulhakim Al-Absi ◽  
Hoon Jae Lee
Keyword(s):  
Rural Areas ◽  
Key Management ◽  
Multiple Access ◽  
Ad Hoc ◽  
Packet Transmission ◽  
Third Party ◽  
Security Requirements ◽  
Communication Overhead ◽  
Privacy And Security ◽  
Environmental Models

The growth of the Internet has led to the increasing usage of smart infotainment applications on the vehicular ad-hoc network (VANET). Preserving privacy and security regarding the provision of smart infotainment applications while on the go is most desired. Thus, a secure authentication scheme is required. Many privacy-preserving security schemes have been developed in recent times using cryptography approaches. However, these incur key management and communication overhead. The usage of third-party servers incurs the overhead of key computation, storage and distribution. Post completion of the initialization phase, the message is secured using cryptography and is shared among vehicles. The design of the proposed secure enhanced non-cooperative cognitive division multiple access ( S − ENCCMA ) aims to eliminate the need for the local message available with the parties to be released for provisioning secure safety-related applications. To overcome the research challenges, this work presents a novel security scheme, namely secure non-cooperative cognitive medium access ( S − ENCCMA ). The experiment is conducted to evaluate the overhead incurred in provisioning security to ENCCMA . The outcome shows that the overhead incurred by S − ENCCMA over ENCCMA was negligible to provide the real-time security requirements of smart infotainment applications, which is experimentally shown in this paper in terms of throughput, collision and successful packet transmission considering varied environmental models such as cities, highways and rural areas.

scholarly journals Mobile Government Applications Based on Security and Privacy: A Literature Review

2018 ◽  
Vol 7 (4.1) ◽  
pp. 51
Author(s):  
Ala'a Saeb Al-Sherideh ◽  
Roesnita Ismail ◽  
Fauziah Abdul Wahid ◽  
Norasikin Fabil ◽  
Waidah Ismail
Keyword(s):  
Literature Review ◽  
Mobile Applications ◽  
Public Services ◽  
Security Requirements ◽  
Security And Privacy ◽  
Privacy And Security ◽  
The Public ◽  
Privacy Requirements ◽  
Security Issues ◽  
The Government

Mobile applications available in anytime and from anywhere. The utilizing of mobile governmental applications is significant to reduce the efforts and time that are required to accomplish the public services by citizens. The main challenges that face the acceptance and adoption of mobile governmental applications are the privacy and security issues. The users, who do not trust the security of mobile governmental applications, may reject the use of these applications which discourages the government to adopt the mobile services. This study focuses in investigating the security and privacy requirements of mobile government applications. Many related works are reviewed and discussed to understand the important security requirements of mobile government applications. The main results indicate that effective privacy and security of mobile government applications should be assured so as to enhance the level of adopting and using these applications. The security requirements involve many considerations such as the hardware characteristics, software characteristics, and communication characteristics. This article mainly gives better understanding of security requirements of mobile government applications.   

scholarly journals Application of Blockchain for Internet of Things: A Bibliometric Analysis

2021 ◽  
Vol 2021 ◽  
pp. 1-16
Author(s):  
Ruijun Duan ◽  
Li Guo
Keyword(s):  
Internet Of Things ◽  
Business Models ◽  
Citation Index ◽  
Security Requirements ◽  
Future Research ◽  
Privacy And Security ◽  
Bibliometric Method ◽  
Research Directions ◽  
Security Issues ◽  
Future Research Directions

As a disruptive emerging technology, the Internet of things (IoT) has rapidly developed, but its privacy risks and security vulnerabilities are still key challenges. The decentralized and distributed architecture of blockchain has the potential to satisfy IoT privacy and security requirements. This gives birth to the new domain of blockchain for IoT (BIoT). BIoT will cause significant transformations across several industries, paving the way for new business models. Based on the Science Citation Index Expanded (SCIE) and Social Sciences Citation Index (SSCI) databases in Web of Science (WoS) Core Collection, this study aims to explore the research trends and cooperation in the field of BIoT using the bibliometric method. The results indicate that the publications in this field have increased significantly from 2016 to 2020, with China and the USA being the most productive and influential countries. Keyword co-occurrence analysis shows that the most important research topics are as follows: security issues, core technologies, application dimensions, and transaction processes. Text mining analysis indicates that future research directions for BloT will focus more on both computing paradigms and key applications. This study will provide researchers with a greater understanding on the state of the art of BIoT and will serve as a reference for researchers engaging in this field to identify their own future research directions.

scholarly journals Privacy and Security Requirements for a Digital Data Hub

2021 ◽  
Author(s):  
Martin Gfeller ◽  
Thomas Hardjono
Keyword(s):  
Data Collection ◽  
Digital Data ◽  
Security Requirements ◽  
Process Data ◽  
Privacy And Security ◽  
Daily Lives ◽  
Business Transactions ◽  
Private Banking

A Digital Data Hub provides <b>Data Accounts</b> wherein persons may store data that are collected in their interaction with organizations. The hub is extensible by contributed <b>Data Apps</b> that gather and process data and conduct business transactions. They may act as Agents assisting the users in their daily lives. Private-banking-grade Privacy and Security ensure that the power of this data collection cannot be misused. Schema standardization is key to ensure privacy and security.

scholarly journals Towards a Remote Monitoring of Patient Vital Signs Based on IoT-Based Blockchain Integrity Management Platforms in Smart Hospitals

Sensors ◽  
2020 ◽  
Vol 20 (8) ◽  
pp. 2195 ◽  
Author(s):  
Faisal Jamil ◽  
Shabir Ahmad ◽  
Naeem Iqbal ◽  
Do-Hyeun Kim
Keyword(s):  
Medical Information ◽  
Vital Signs ◽  
Data Access ◽  
Healthcare Research ◽  
Security Requirements ◽  
Physiological Data ◽  
Healthcare Applications ◽  
Privacy And Security ◽  
Blockchain Technology ◽  
The Government

Over the past several years, many healthcare applications have been developed to enhance the healthcare industry. Recent advancements in information technology and blockchain technology have revolutionized electronic healthcare research and industry. The innovation of miniaturized healthcare sensors for monitoring patient vital signs has improved and secured the human healthcare system. The increase in portable health devices has enhanced the quality of health-monitoring status both at an activity/fitness level for self-health tracking and at a medical level, providing more data to clinicians with potential for earlier diagnosis and guidance of treatment. When sharing personal medical information, data security and comfort are essential requirements for interaction with and collection of electronic medical records. However, it is hard for current systems to meet these requirements because they have inconsistent security policies and access control structures. The new solutions should be directed towards improving data access, and should be managed by the government in terms of privacy and security requirements to ensure the reliability of data for medical purposes. Blockchain paves the way for a revolution in the traditional pharmaceutical industry and benefits from unique features such as privacy and transparency of data. In this paper, we propose a novel platform for monitoring patient vital signs using smart contracts based on blockchain. The proposed system is designed and developed using hyperledger fabric, which is an enterprise-distributed ledger framework for developing blockchain-based applications. This approach provides several benefits to the patients, such as an extensive, immutable history log, and global access to medical information from anywhere at any time. The Libelium e-Health toolkit is used to acquire physiological data. The performance of the designed and developed system is evaluated in terms of transaction per second, transaction latency, and resource utilization using a standard benchmark tool known as Hyperledger Caliper. It is found that the proposed system outperforms the traditional health care system for monitoring patient data.

scholarly journals A New Secure and Anonymous Metering Scheme for Smart Grid Communications

Energies ◽  
2019 ◽  
Vol 12 (24) ◽  
pp. 4751 ◽  
Author(s):  
Shaohao Xie ◽  
Fangguo Zhang ◽  
Huizhi Lin ◽  
Yangtong Tian
Keyword(s):  
Smart Grid ◽  
Security Requirements ◽  
Smart Meter ◽  
Privacy And Security ◽  
Trusted Platform Module ◽  
Fine Grained ◽  
Smart Grid Communications ◽  
Security Issues ◽  
Trusted Platform ◽  
Smart Grid Communication

The smart meter is one of the most important components of the smart grid, which enables bi-directional communication between electric power providers and in-home appliances. However, the fine-grained metering mechanism that reports real-time electricity usage to the provider may result in some privacy and security issues for the owner of the smart meter. In this paper, we propose a new secure and anonymous smart metering scheme based on the technique of direct anonymous attestation and identity-based signatures. We utilize the trusted platform module to realize the tamper resistance of the smart meter. Moreover, our scheme is able to detect malfunctioning meters in which data is reported more than once in a time period. Finally, the performance and security results show that our proposed scheme is efficient and satisfies the security requirements of the smart grid communication system.

Sign in / Sign up

Export Citation Format

Share Document