scholarly journals Access control scheme in cloud services based on different user roles

2018 ◽  
Vol 51 (3-4) ◽  
pp. 182-188
Author(s):  
Shanmugasundaram Singaravelan ◽  
Ramaiah Arun ◽  
Dhiraviyam Arun Shunmugam ◽  
Raja Veeman Vivek ◽  
Dhanushkodi Murugan
Keyword(s):  
Access Control ◽  
Rapid Development ◽  
Single Point ◽  
Cloud Services ◽  
Security Issues ◽  
Attribute Based Encryption ◽  
Control Scheme ◽  
Result Show ◽  
Access Control System ◽  
Private Domain

The rapid development of computer technology, cloud-based services have become a hot topic. They not only provide users with convenience, but also bring many security issues, such as data sharing and privacy issue. In this paper, we present an access control system with privilege separation based on privacy protection (PS-ACS). In the PS-ACS scheme, we divide users into private domain (PRD) and public domain (PUD) logically. In PRD, to achieve read access permission and write access permission, we adopt the Key-Aggregate Encryption (KAE) and the Improved Attribute-based Signature (IABS) respectively. In PUD, we construct new multi-authority cipher text policy attribute-based encryption (CP-ABE) scheme with efficient decryption to avoid the issues of single point of failure and complicated key distribution, and design an efficient attribute revocation method for it. The analysis and simulation result show that our scheme is feasible and superior to protect users’ privacy in cloud-based services

scholarly journals Threshold-Based Location-Aware Access Control

2011 ◽  
Vol 2 (3) ◽  
pp. 22-37 ◽  
Author(s):  
Roel Peeters ◽  
Dave Singelée ◽  
Bart Preneel
Keyword(s):  
Access Control ◽  
Control Mechanism ◽  
Single Point ◽  
Security Vulnerabilities ◽  
Location Aware ◽  
Control Scheme ◽  
Access Control System ◽  
Security And Reliability ◽  
User Friendly ◽  
Personal Devices

Designing a secure, resilient and user-friendly access control system is a challenging task. In this article, a threshold-based location-aware access control mechanism is proposed. This design uniquely combines the concepts of secret sharing and distance bounding protocols to tackle various security vulnerabilities. The proposed solution makes use of the fact that the user carries around various personal devices. This solution offers protection against any set of or fewer compromised user’s devices, with being an adjustable threshold number. It removes the single point of failure in the system, as access is granted when one carries any set of user’s devices. Additionally it supports user-centered management, since users can alter the set of personal devices and can adjust the security parameters of the access control scheme towards their required level of security and reliability.

scholarly journals Threshold-Based Location-Aware Access Control

2013 ◽  
pp. 20-36 ◽  
Author(s):  
Roel Peeters ◽  
Dave Singelée ◽  
Bart Preneel
Keyword(s):  
Access Control ◽  
Single Point ◽  
Security Vulnerabilities ◽  
Location Aware ◽  
Control Scheme ◽  
Access Control System ◽  
Security And Reliability ◽  
Access Control Mechanism ◽  
User Friendly ◽  
Personal Devices

Designing a secure, resilient and user-friendly access control system is a challenging task. In this article, a threshold-based location-aware access control mechanism is proposed. This design uniquely combines the concepts of secret sharing and distance bounding protocols to tackle various security vulnerabilities. The proposed solution makes use of the fact that the user carries around various personal devices. This solution offers protection against any set of (t-1) or fewer compromised user’s devices, with t being an adjustable threshold number. It removes the single point of failure in the system, as access is granted when one carries any set of t user’s devices. Additionally it supports user-centered management, since users can alter the set of personal devices and can adjust the security parameters of the access control scheme towards their required level of security and reliability.

scholarly journals Modbus Access Control System Based on SSI over Hyperledger Fabric Blockchain

Sensors ◽  
2021 ◽  
Vol 21 (16) ◽  
pp. 5438
Author(s):  
Santiago Figueroa-Lorenzo ◽  
Javier Añorga Benito ◽  
Saioa Arrizabalaga
Keyword(s):  
Control System ◽  
Access Control ◽  
Ad Hoc ◽  
Single Point ◽  
Main Challenge ◽  
Authentication And Authorization ◽  
Access Control System ◽  
Identity Based

Security is the main challenge of the Modbus IIoT protocol. The systems designed to provide security involve solutions that manage identity based on a centralized approach by introducing a single point of failure and with an ad hoc model for an organization, which handicaps the solution scalability. Our manuscript proposes a solution based on self-sovereign identity over hyperledger fabric blockchain, promoting a decentralized identity from which both authentication and authorization are performed on-chain. The implementation of the system promotes not only Modbus security, but also aims to ensure the simplicity, compatibility and interoperability claimed by Modbus.

A Trusted Data Storage and Access Control Scheme for Power CPS Combining Blockchain and Attribute-Based Encryption

2021 ◽  
Author(s):  
Zhang Geng ◽  
Wang Yanan ◽  
Liu Guojing ◽  
Wang Xueqing ◽  
Gao Kaiqiang ◽  
...  
Keyword(s):  
Access Control ◽  
Data Storage ◽  
Attribute Based Encryption ◽  
Control Scheme ◽  
Trusted Data

A Novel File Hierarchy Access Control Scheme Using Attribute-Based Encryption

2014 ◽  
Vol 701-702 ◽  
pp. 911-918 ◽  
Author(s):  
Shu Lan Wang ◽  
Jian Ping Yu ◽  
Peng Zhang ◽  
Ping Wang
Keyword(s):  
Access Control ◽  
Data Privacy ◽  
Access Structure ◽  
Secret Key ◽  
Chosen Plaintext Attack ◽  
Fine Grained ◽  
Access Structures ◽  
Diffie Hellman ◽  
Attribute Based Encryption ◽  
Control Scheme

Attribute-based encryption (ABE) can keep data privacy and realize fine-grained access control. However, the notion of file hierarchy hasn't been presented until now. The problem, the multiple hierarchical files to be shared only using once encryption scheme, cannot be effectively solved. Based on the access structure layered model, a novel access control scheme about file hierarchy is proposed by using ABE to solve the problem. The proposed scheme will not only decrease the number of access structures to one, but also only require a secret key to decrypt all the authorization files. It is proved to be secure against the chosen-plaintext attack (CPA) under the decision bilinear Diffie-Hellman (DBDH) assumption. In addition, the performance analysis results indicate that the proposed scheme is efficient and practical when a large number of hierarchical files are shared.

Sign in / Sign up

Export Citation Format

Share Document