Dynamic FCFS ACM Model for Risk Assessment on Real Time Unix File System

2013 ◽

Vol 5 (4) ◽

pp. 41-62

Author(s):

Prashant Kumar Patra ◽

Padma Lochan Pradhan

Keyword(s):

Risk Assessment ◽

Access Control ◽

Security Policy ◽

Security Requirements ◽

Management Policy ◽

Security Model ◽

Distributed Environment ◽

Web Portal ◽

Proposed Model ◽

The Right

The access control is a mechanism that a system grants, revoke the right to access the object. The subject and object can able to integrate, synchronize, communicate and optimize through read, write and execute over a UFS. The access control mechanism is the process of mediating each and every request to system resources, application and data maintained by a operating system and determining whether the request should be approve, created, granted or denied as per top management policy. The AC mechanism, management and decision is enforced by implementing regulations established by a security policy. The management has to investigate the basic concepts behind access control design and enforcement, point out different security requirements that may need to be taken into consideration. The authors have to formulate and implement several ACM on normalizing and optimizing them step by step, that have been highlighted in proposed model for development and production purpose. This research paper contributes to the development of an optimization model that aims and objective to determine the optimal cost, time and maximize the quality of services to be invested into security model and mechanisms deciding on the measure components of UFS. This model has to apply to ACM utilities over a Web portal server on object oriented and distributed environment. This ACM will be resolve the uncertainty, un-order, un formal and unset up (U^4) problems of web portal on right time and right place of any where & any time in around the globe. It will be more measurable and accountable for performance, fault tolerance, throughput, bench marking and risk assessment on any application.

Download Full-text

A Framework for Translating a High Level Security Policy into Low Level Security Mechanisms

Journal of Electrical Engineering ◽

10.2478/v10187-010-0003-x ◽

2010 ◽

Vol 61 (1) ◽

pp. 20-28 ◽

Cited By ~ 2

Author(s):

Ahmed Hassan ◽

Waleed Bahgat

Keyword(s):

Network Security ◽

Access Control ◽

Security Policy ◽

Security Policies ◽

Second Phase ◽

Security Model ◽

Intermediate Model ◽

Low Level ◽

Proposed Model ◽

High Level

A Framework for Translating a High Level Security Policy into Low Level Security MechanismsSecurity policies have different components; firewall, active directory, and IDS are some examples of these components. Enforcement of network security policies to low level security mechanisms faces some essential difficulties. Consistency, verification, and maintenance are the major ones of these difficulties. One approach to overcome these difficulties is to automate the process of translation of high level security policy into low level security mechanisms. This paper introduces a framework of an automation process that translates a high level security policy into low level security mechanisms. The framework is described in terms of three phases; in the first phase all network assets are categorized according to their roles in the network security and relations between them are identified to constitute the network security model. This proposed model is based on organization based access control (OrBAC). However, the proposed model extend the OrBAC model to include not only access control policy but also some other administrative security policies like auditing policy. Besides, the proposed model enables matching of each rule of the high level security policy with the corresponding ones of the low level security policy. Through the second phase of the proposed framework, the high level security policy is mapped into the network security model. The second phase could be considered as a translation of the high level security policy into an intermediate model level. Finally, the intermediate model level is translated automatically into low level security mechanism. The paper illustrates the applicability of proposed approach through an application example.

Download Full-text

Multi-Layered Security Model for Hadoop Environment

International Journal of Handheld Computing Research ◽

10.4018/ijhcr.2017100106 ◽

2017 ◽

Vol 8 (4) ◽

pp. 58-71

Author(s):

P. Victer Paul ◽

D. Veeraiah

Keyword(s):

Big Data ◽

Access Control ◽

Data System ◽

Security Model ◽

Proposed Model ◽

Access Rights ◽

Malicious Intent ◽

Hadoop System

In this article, a novel security model for the Hadoop environment has been developed to enhance security credentials of handheld systems. The proposed system deals with enabling Hadoop security in terms of a dataset and a user which is willing to access the content inside the Hadoop system. It deals with security in terms of three different features: encryption, confidentiality and authentication. The significance of the proposed model is it provides protection against malicious intent which allows only valid content into the Big data system; it enables authenticated users and people to enter into the system and make the dataset more secure; and if authentication is enhanced, then authorization can be easily gained in the Hadoop system which provides access control and access rights to resource which the user is willing to perform its function or operation. This model is implemented, and the performance has been validated using existing security variants.

Download Full-text

A Secured System for Internet Enabled Host Devices

Network and Communication Technologies ◽

10.5539/nct.v5n1p26 ◽

2020 ◽

Vol 5 (1) ◽

pp. 26

Author(s):

Aderonke F. Thompson ◽

Oghenerukevwe E. Oyinloye ◽

Matthew T. David ◽

Boniface K. Alese

Keyword(s):

Access Control ◽

Web Application ◽

Cyber Attacks ◽

Context Aware ◽

Security Model ◽

Term Evolution ◽

Public Keys ◽

Network Topologies ◽

The Right

In the world of wireless communication, heterogeneous network topologies such as Wi-Fi and Long-Term Evolution (LTE) the topologies authentication service delivery forms a major challenge with access control; which is sought to be addressed. In this paper, we propose a security model by adapting Capability-based Context Aware Access Control (CCAAC) model for internet-enabled devices for defense against hacking or unauthorized access. The steps applied during the programming of this web application was followed through using the Elliptic-Curve Diffie–Hellman (ECCDH) algorithm so that the initiation of a random prime number between a range, the encryption and exchange of the devices public keys to the decryption are interpreted the right way to the machine making use of it. The results established a security model that has a good chance of being effective against present cyber-attacks other security loopholes.

Download Full-text

Parallel Access Control Model in Cross-Domain Grid Computing Environment

International Journal of Embedded and Real-Time Communication Systems ◽

10.4018/ijertcs.2018010103 ◽

2018 ◽

Vol 9 (1) ◽

pp. 50-65

Author(s):

Sarra Namane ◽

Nassira Ghoualmi

Keyword(s):

Access Control ◽

Grid Computing ◽

Control Model ◽

Security Requirements ◽

Access Control Model ◽

Cross Domain ◽

Proposed Model ◽

Security Challenges ◽

Role Mapping ◽

Parallel Access

Despite the various attractive features that grid computing has to offer, it has many great security challenges, such as access control. With the expansion of the network scale, a large number of authorization requests have to be treated; on the other hand, the multi-domain nature of grid computing generates difficult to manage questions about cross-domain access control, and a variety of solutions use the role mapping mechanism to allow collaborations between domains. But this mechanism gives a potential risk of violating consistency properties of domains. This article aims to address this issue and proposes a parallel access control model in cross-domain grid computing architecture to be more convenient to the security requirements of the multi-domain environment. Finally, as a proof of concept, the authors implement a cross-domain and parallel authorization simulator (CD-PAS) where experiments are done. The obtained results show that the proposed model is sensitive to the number of authorization requests. In addition, it can effectively reduce the execution time of access control mechanism.

Download Full-text

XACML-Based Fine-Grained Security Policy for Distributed System

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.225-226.848 ◽

2011 ◽

Vol 225-226 ◽

pp. 848-851

Author(s):

Ai Juan Zhang ◽

Jing Xiang Gao ◽

Cheng Ji

Keyword(s):

Access Control ◽

Software Development ◽

Security Policy ◽

Control Policy ◽

Distributed Applications ◽

Security Policies ◽

Security Model ◽

Access Control Policy ◽

Fine Grained ◽

Security Modeling

Distributed applications often require integrating security policies of collaborating parties. The integration must be able to support complex authorization specifications and the fine-grained resources access requirements that the various parties may have. But now security modeling is not considered as a vital part in software development. In this paper, it is proposed to integrate the design of access control policy into software development. In this paper, UML is used to model access control policy, and then a framework is designed to generate the security model result expressed in XACML and to verify the policy correct and complete.

Download Full-text

Using formal security models in secure databases

Physico-mathematical modelling and informational technologies ◽

10.15407/fmmit2021.32.070 ◽

2021 ◽

pp. 70-74

Author(s):

Vladislav Vilihura ◽

Yuriy Gorbenko ◽

Vitaliy Yesin ◽

Serhiy Rassomakhin

Keyword(s):

Access Control ◽

Specific Situation ◽

Role Based Access Control ◽

Security Model ◽

Access Control Models ◽

Control Models ◽

Security Models ◽

Role Based ◽

The Right ◽

Secure Databases

The paper contains key provisions (requirements) that should be followed when building secure databases using the capabilities of the main formal access control models, such as discretionary access control models, mandatory access control models, role-based access control models. At the same time, it is noted that any security model does not provide protection but only provides the principle of building a secure database, the implementation of which should ensure the security properties inherent in the model. The security of the database is equally determined by: the properties of the model itself (one or more), its (their) adequacy to the threats affecting the system, and how it (they) is correctly implemented(s). The decisive factor in making a decision is always an assessment of a specific situation, which will allow you to make the right choice, including the complex use of formal models.

Download Full-text

System Health Monitoring Using a Novel Method: Security Unified Process

Journal of Computer Networks and Communications ◽

10.1155/2012/151205 ◽

2012 ◽

Vol 2012 ◽

pp. 1-20 ◽

Cited By ~ 1

Author(s):

Alireza Shameli-Sendi ◽

Masoume Jabbarifar ◽

Michel Dagenais ◽

Mehdi Shajari

Keyword(s):

Risk Assessment ◽

Health Monitoring ◽

Security Policy ◽

Assessment Model ◽

Classification Model ◽

Analysis And Design ◽

System Health Monitoring ◽

Proposed Model ◽

Information Security Management System ◽

Unified Process

Iterative and incremental mechanisms are not usually considered in existing approaches for information security management System (ISMS). In this paper, we propose SUP (security unified process) as a unified process to implement a successful and high-quality ISMS. A disciplined approach can be provided by SUP to assign tasks and responsibilities within an organization. The SUP architecture comprises static and dynamic dimensions; the static dimension, or disciplines, includes business modeling, assets, security policy, implementation, configuration and change management, and project management. The dynamic dimension, or phases, contains inception, analysis and design, construction, and monitoring. Risk assessment is a major part of the ISMS process. In SUP, we present a risk assessment model, which uses a fuzzy expert system to assess risks in organization. Since, the classification of assets is an important aspect of risk management and ensures that effective protection occurs, a Security Cube is proposed to identify organization assets as an asset classification model. The proposed model leads us to have an offline system health monitoring tool that is really a critical need in any organization.

Download Full-text

A Hierarchical Security Model for Multimedia Big Data

International Journal of Multimedia Data Engineering and Management ◽

10.4018/ijmdem.2014010101 ◽

2014 ◽

Vol 5 (1) ◽

pp. 1-13 ◽

Cited By ~ 6

Author(s):

Min Chen

Keyword(s):

Big Data ◽

Access Control ◽

Arrival Rate ◽

Multimedia Data ◽

Security Requirements ◽

Role Based Access Control ◽

Temporal Constraints ◽

Security Model ◽

Multimedia Big Data ◽

Spatio Temporal

In this paper, the author proposes a hierarchical security model (HSM) to enhance security assurance for multimedia big data. It provides role hierarchy management and security roles/rules administration by seamlessly integrating the role-based access control (RBAC) with the object-oriented concept, spatio-temporal constraints, and multimedia standard MPEG-7. As a result, it can deal with challenging and unique security requirements in the multimedia big data environment. First, it supports multilayer access control so different access permission can be conveniently set for various multimedia elements such as visual/audio objects or segments in a multimedia data stream when needed. Second, the spatio-temporal constraints are modeled for access control purpose. Finally, its security processing is efficient to handle high data volume and rapid data arrival rate.

Download Full-text

Improved Access Control Mechanisms Using Action Weighted Grid Authorization Graph for Faster Decision Making

International Journal of Information Security and Privacy ◽

10.4018/ijisp.2021010105 ◽

2021 ◽

Vol 15 (1) ◽

pp. 99-116

Author(s):

Sarra Namane ◽

Nassira Ghoualmi ◽

Mustafa Kaiiali

Keyword(s):

Decision Making ◽

Access Control ◽

Security Policy ◽

Security Policies ◽

Control Mechanisms ◽

Secure Access ◽

Proposed Model ◽

Security Rule ◽

Grid Resources ◽

The Way

Access control mechanisms are the way to guarantee secure access to grid resources. Recent research works were focused on how to improve the representation of the resources' security policies for faster decisions making. PCM, HCM, GAG, and WGAG are all different ways to represent these security policies. This paper presents an enhancement to WGAG, the action-weighted grid authorization graph (Action-WGAG). A security policy-parser (SP-Parser) has been developed to implement the Action-WGAG. The evaluation results of the proposed model showed that it assures a smaller number of security rule checking in some cases and a reduction of the answer time to an access control request.

Download Full-text