scholarly journals INTEGRATED CRYPTOGRAPHICAL ACCESS CONTROL OVER NETWORK PROJECT

2020 ◽  
Vol 4 (1) ◽  
pp. 19-21
Author(s):  
Yakubu Ajiji Makeri
Keyword(s):  
Control System ◽  
Access Control ◽  
Public Key ◽  
Encryption Scheme ◽  
End User ◽  
Access Control System ◽  
Identity Based ◽  
Certificate Management ◽  
Cryptographic Access Control ◽  
Network Project

Cryptanalysis is a new ID-based encryption scheme proposed by Meshram. I found a method for factor N, where N is the parameter proposed by Meshram. We also provide a method for retrieving the Secret Master key for Mayshram’s ID-based encryption scheme. Identity-based (ID-based) cryptography is very useful because it simplifies certificate management in public-key cryptocurrency. For the design of the Integrated File Level Cryptographic Access Control (IFLCAC) system, it makes file security much easier for the end-user. This system combines the advantages of traditional file-level cryptography and full-disc cryptography systems, making it safe and easy to use. We first look at existing file cryptography systems, compare them to two, and then describe the interactions between components and components of the integrated file-level cryptographic access control system. Because its defense relies on the difficulty of discrete logarithmic and integer factor problems, it proves that his scheme is safe against favorable select-plain invasion. We show that this new ID-based encryption scheme is not secure by introducing a method to retrieve the secret master key.

scholarly journals Modbus Access Control System Based on SSI over Hyperledger Fabric Blockchain

Sensors ◽  
2021 ◽  
Vol 21 (16) ◽  
pp. 5438
Author(s):  
Santiago Figueroa-Lorenzo ◽  
Javier Añorga Benito ◽  
Saioa Arrizabalaga
Keyword(s):  
Control System ◽  
Access Control ◽  
Ad Hoc ◽  
Single Point ◽  
Main Challenge ◽  
Authentication And Authorization ◽  
Access Control System ◽  
Identity Based

Security is the main challenge of the Modbus IIoT protocol. The systems designed to provide security involve solutions that manage identity based on a centralized approach by introducing a single point of failure and with an ad hoc model for an organization, which handicaps the solution scalability. Our manuscript proposes a solution based on self-sovereign identity over hyperledger fabric blockchain, promoting a decentralized identity from which both authentication and authorization are performed on-chain. The implementation of the system promotes not only Modbus security, but also aims to ensure the simplicity, compatibility and interoperability claimed by Modbus.

scholarly journals Certificateless Public Key Encryption Scheme with Hybrid Problems and Its Application to Internet of Things

2014 ◽  
Vol 2014 ◽  
pp. 1-9 ◽  
Author(s):  
Rui Guo ◽  
Qiaoyan Wen ◽  
Huixian Shi ◽  
Zhengping Jin ◽  
Hua Zhang
Keyword(s):  
Internet Of Things ◽  
Public Key Cryptography ◽  
Public Key ◽  
Encryption Scheme ◽  
Public Key Encryption ◽  
Certificateless Cryptography ◽  
Diffie Hellman ◽  
Identity Based ◽  
Certificate Management ◽  
Certificateless Public Key Encryption

Certificateless cryptography aims at combining the advantages of public key cryptography and identity based cryptography to avoid the certificate management and the key escrow problem. In this paper, we present a novel certificateless public key encryption scheme on the elliptic curve over the ring, whose security is based on the hardness assumption of Bilinear Diffie-Hellman problem and factoring the large number as in an RSA protocol. Moreover, since our scheme requires only one pairing operation in decryption, it is significantly more efficient than other related schemes. In addition, based on our encryption system, we also propose a protocol to protect the confidentiality and integrity of information in the scenario of Internet of Things with constrained resource nodes.

Semantic-Based Access Control for Data Resources in Open Grid Services Architecture

2014 ◽  
Vol 6 (2) ◽  
pp. 1-23 ◽  
Author(s):  
Vineela Muppavarapu ◽  
Soon M. Chung
Keyword(s):  
Control System ◽  
Access Control ◽  
Data Access ◽  
Grid Services ◽  
Control Policies ◽  
Ontology Language ◽  
Access Control Policies ◽  
Access Control System ◽  
Identity Based ◽  
Open Grid Services Architecture

This paper proposes a semantic-based access control system for the data resources in the Open Grid Services Architecture - Data Access and Integration (OGSA-DAI). OGSA-DAI is a widely used middleware for integrating data resources in Grids. However, the identity-based access control in OGSA-DAI causes substantial overhead for the resource providers in virtual organizations (VOs), because the access control information of individual users has to be maintained by each resource provider. To solve these problems, the authors propose a semantic-based access control system using Shibboleth and ontology. Shibboleth, an attribute authorization service, is used to manage the user attributes, and the Web Ontology Language (OWL) is used to represent the ontology of the data resources and users. By using ontology, VOs can resolve the differences in their terminologies and specify access control policies based on concepts and user roles, instead of individual resources and user identities. As a result, the administration overhead of the resource providers is reduced considerably. In addition, the eXtensible Access Control Markup Language (XACML) is used to specify the access control policies uniformly across multiple VOs. The authors also developed an XACML policy administration tool that allows the administrators to create, update, and manage XACML policies. The performance analysis shows that our proposed system adds only a small overhead to the existing security mechanism of OGSA-DAI.

scholarly journals RBAC+: Protecting Web Databases With Access Control Mechanism

2012 ◽  
Vol 2 (1) ◽  
pp. 24-30
Author(s):  
Archna Arudkar ◽  
Vimla Jethani
Keyword(s):  
Control System ◽  
Access Control ◽  
Web Application ◽  
Internet Security ◽  
End User ◽  
User Requirement ◽  
Web Databases ◽  
Database Server ◽  
Access Control System ◽  
Application Aware

With the wide adoption of Internet, security of web database is a key issue. In web-based applications, due to the use of n-tier architecture, the database server has no knowledge of the web application user and hence all authorization decisions are based upon execution of specific web application. Application server has full access privileges to delegate to the end user based upon the user requirement. The identity of the end user is hidden , subsequently database server fails to assign proper authorizations to the end user. Hence, current approaches to access control on databases do not fit for web databases because they are mostly based on individual user identities. To fill this security gap, the definition of application aware access control system is needed. In this paper, RBAC+ Model, an extension of NIST RBAC provides a application aware access control system to prevent attacks with the notion of application, application profile and sub-application session.

Semantic-Based Access Control for Data Resources in Open Grid Services Architecture - Data Access and Integration (OGSA-DAI)

2018 ◽  
pp. 1701-1725
Author(s):  
Vineela Muppavarapu ◽  
Soon M. Chung
Keyword(s):  
Control System ◽  
Access Control ◽  
Data Access ◽  
Grid Services ◽  
Control Policies ◽  
Ontology Language ◽  
Access Control Policies ◽  
Access Control System ◽  
Identity Based ◽  
Open Grid Services Architecture

This paper proposes a semantic-based access control system for the data resources in the Open Grid Services Architecture - Data Access and Integration (OGSA-DAI). OGSA-DAI is a widely used middleware for integrating data resources in Grids. However, the identity-based access control in OGSA-DAI causes substantial overhead for the resource providers in virtual organizations (VOs), because the access control information of individual users has to be maintained by each resource provider. To solve these problems, the authors propose a semantic-based access control system using Shibboleth and ontology. Shibboleth, an attribute authorization service, is used to manage the user attributes, and the Web Ontology Language (OWL) is used to represent the ontology of the data resources and users. By using ontology, VOs can resolve the differences in their terminologies and specify access control policies based on concepts and user roles, instead of individual resources and user identities. As a result, the administration overhead of the resource providers is reduced considerably. In addition, the eXtensible Access Control Markup Language (XACML) is used to specify the access control policies uniformly across multiple VOs. The authors also developed an XACML policy administration tool that allows the administrators to create, update, and manage XACML policies. The performance analysis shows that our proposed system adds only a small overhead to the existing security mechanism of OGSA-DAI.

scholarly journals Internet of Things Access Control System Based on Hyperledger

2021 ◽  
Vol 1748 ◽  
pp. 042031
Author(s):  
Zheming Yang ◽  
Di Shao ◽  
Liangyong Qu ◽  
Mei Zhang
Keyword(s):  
Control System ◽  
Internet Of Things ◽  
Access Control ◽  
Access Control System
Sign in / Sign up

Export Citation Format

Share Document