Information security, cybersecurity and privacy protection. Governance of information security

2020 ◽  
Keyword(s):  
Information Security ◽  
Privacy Protection

A Revised Serverless Authentication Protocol with Forward Security for RFID

2010 ◽  
Vol 29-32 ◽  
pp. 2267-2272
Author(s):  
Lei He ◽  
Yong Gan ◽  
Na Na Li ◽  
Tao Zhang
Keyword(s):  
Computational Complexity ◽  
Information Security ◽  
Privacy Protection ◽  
Authentication Protocol ◽  
Forward Security ◽  
Authentication Protocols ◽  
Rfid System ◽  
Security Problem ◽  
Lightweight Authentication

Information security problem has become one of the hottest issues in RFID system. More and more researchers begin to study how to provide security protection in the RFID system. In the paper, we mainly research lightweight authentication protocols in RFID system. Firstly, we analyze some protocols. Secondly, we introduce a serverless authentication protocol for RFID system and analyze its security. We find it does not provide forward security. Thirdly, we propose a revised serverless authentication protocol with forward security. It provides two-way authentication and privacy protection, resists tracking and cloning attack as well as the original protocol. Moreover, it provides forward security protection and resists desynchronization attack. For the efficiency, its computational complexity is at the same level with the protocol proposed by Tan et al.

Hexa-Dimension Code of Practice for Data Privacy Protection

2018 ◽  
pp. 4909-4919 ◽  
Author(s):  
Wanbil William Lee
Keyword(s):  
Information Security ◽  
Privacy Protection ◽  
Data Privacy ◽  
Vicious Circle ◽  
Complex Data ◽  
Code Of Practice ◽  
Policy Statements ◽  
Data Privacy Protection ◽  
Privacy Breaches ◽  
User Friendly

Cyberspace inhabitants live under threat of a complex data privacy protection problem in a technology-dependent information-intensive phenomenon grown out of a vicious circle. The front-line Information security professionals are among the first to bear the brunt and are in dire need of guidance for enforcing effectively the policies and standards and mitigating the adverse consequences of data privacy breaches since the policy statements are invariably dated due to the rapid advances of the technology, limited to cope with techno-socio threats, inadequate to deal with the well-equipped and cunning cybercriminals, and vague and less than user-friendly, or simply difficult to absorb and follow. A framework that comprises the newly developed hexa-dimension code of practice based on the 6-dimension metric (represented by the LESTEF model) and an operationalization scheme are proposed, where the code in which the gist of the adopted policies is incorporated promises to be a handy reference or a quick guide capable of alleviating the information security staff's burden.

Sign in / Sign up

Export Citation Format

Share Document