A Service-Based Approach for RBAC and MAC Security

Distributed Application ◽

Wide Range ◽

Middleware security encompasses a wide range of potential considerations, ranging from the ability to utilize the security capabilities of middleware solutions (for example, CORBA, .NET, J2EE, DCE, and so forth) directly out-of-the-box in support of a distributed application to leveraging the middleware itself (paradigm) to realize complex and intricate security solutions (for example, discretionary access control, role-based access control, mandatory access control, and so forth). The objective in this chapter is to address the latter consideration: examining the attainment of advanced security capabilities using the middleware paradigm, namely, role-based access control (RBAC) and mandatory access control (MAC). The resulting security provides a robust collection of services that is versatile and flexible and easily integrates into a distributed application comprised of interacting legacy, COTS, GOTS, databases, servers, clients, and so forth.

A Semi-Formal Multi-Policy Secure Model for Semantic Spatial Trajectories

10.20944/preprints201611.0092.v2 ◽

2016 ◽

Author(s):

Xingang Wang

Keyword(s):

Access Control ◽

Role Based ◽

Spatial Trajectories

With the proliferation of locating devices, more and more raw spatial trajectories are formed, and many works enrich these raw trajectories with semantics, and mine patterns from both raw and semantic trajectories, but access control of spatial trajectories is not considered yet. We present a multi-policy secure model for semantic spatial trajectories. In our model, Mandatory Access Control, Role Based Access Control and Discretionary Access control are all enforced, separately and combined, and we represent the model semi-formally in Ontology Web Language.

TRUST- BASED MODELING MAC-TYPE ACCESS CONTROL THROUGH ACCESS AND ACTIONS CONTROL POLICIES

Journal of Engineering Science ◽

10.52326/jes.utm.2021.28(2).05 ◽

2021 ◽

Vol XXVIII (2) ◽

pp. 67-78

Author(s):

Marcel Danilescu ◽

◽

Victor Besliu ◽

Keyword(s):

Access Control ◽

Control Policy ◽

Business Environment ◽

Access Control Policy ◽

Attribute Based Access Control ◽

Role Based ◽

Control Modeling

In recent decades, the number of researches on access control and user actions in computer systems has increased. Over time, there have been two models of implementing Mandatory Access Control (MAC) policies for government institutions and Discretionary Access Control (DAC) for the business environment, policies that various access control modeling solutions seek to implement. Among the access control modeling solutions developed are Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC), presented in the U.S.A. by the National Institute of Standard and Technology (NIST). In Romania, in 2010, the access control solution based on trust was presented. This paper presents Mandatory Access Control policy modeling using the trust-based access and actions control modeling solution.

A Semi-Formal Multi-Policy Secure Model for Semantic Spatial Trajectories

10.20944/preprints201611.0092.v1 ◽

2016 ◽

Author(s):

Xingang Wang

Keyword(s):

Access Control ◽

Role Based ◽

Spatial Trajectories

With the proliferation of locating devices, more and more raw spatial trajectories are formed, and many works enrich these raw trajectories with semantics, and mine patterns from both raw and semantic trajectories, but access control of spatial trajectories is not considered yet. We present a multi-policy secure model for semantic spatial trajectories. In our model, Mandatory Access Control, Role Based Access Control and Discretionary Access control are all enforced, separately and combined, and we represent the model semi-formally in Ontology Web Language.

Access Control Framework for Cloud Computing

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch035 ◽

2019 ◽

pp. 698-711

Author(s):

Kashif Munir ◽

Lawan A. Mohammed

Keyword(s):

Cloud Computing ◽

Access Control ◽

Job Functions ◽

Access Control Models ◽

Control Models ◽

Control Framework ◽

Role Based ◽

Access Privileges

Access control is generally a rule or procedure that allows, denies, restricts or limit access to system's resources. It may, as well, monitor and record all attempts made to access a system. Access Control may also identify users attempting to access unauthorized resources. It is a mechanism which is very much important for protection in computer security. Various access control models are in use, including the most common Mandatory Access Control (MAC), Discretionary Access Control (DAC) and Role Based Access Control (RBAC). All these models are known as identity based access control models. In all these access control models, user (subjects) and resources (objects) are identified by unique names. Identification may be done directly or through roles assigned to the subjects. These access control methods are effective in unchangeable distributed system, where there are only a set of Users with a known set of services. For this reason, we propose a framework which is well suited to many situations in cloud computing where users or applications can be clearly separated according to their job functions. In this chapter, we proposes a role based access control framework with various features including security of sensitive data, authorization policy and secure data from hackers. Our proposed role based access control algorithm provides tailored and fine level of user access control services without adding complexity, and supports access privileges updates dynamically when a user's role is added or updated.

Risk aware Access Control model for Trust Based collaborative organizations in cloud

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.6.20235 ◽

2018 ◽

Vol 7 (4.6) ◽

pp. 49

Author(s):

Rajanikanth Aluvalu ◽

Krishna Keerthi Chennam ◽

M. A.Jabbar ◽

Shaik Sarfaraz Ahamed

Keyword(s):

Access Control ◽

Trust Management ◽

Critical Issue ◽

Trust Model ◽

Control Model ◽

Access Control Model ◽

Access Control Models ◽

Secure interactions between collaborative organizations having their applications and data stored in “Cloud Computing” are a critical issue. Access control is the biggest challenge and trust is regarded as an essential secured relationship within a distributed system. Basic access control models, like Discretionary Access Control, Mandatory Access Control, and Role Based Access Control, cannot satisfy requirements in such environment, and need some improvements. During the collaboration, the attitude of the user may change. Therefore, in this context, adding trust management to an access control model is mandatory. To achieve this goal, in this paper, a new trust model to control access in the cloud is proposed. The aim is to monitor in real-time security for collaborative organizations, having decided to migrate to the cloud.

Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security ◽

10.1145/354876.354878 ◽

2000 ◽

Vol 3 (2) ◽

pp. 85-106 ◽

Cited By ~ 280

Author(s):

Sylvia Osborn ◽

Ravi Sandhu ◽

Qamar Munawer

Keyword(s):

Access Control ◽

Control Policies ◽

Access Control Policies ◽

An Audit-Integrated ARBAC Model

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.263-266.1600 ◽

2012 ◽

Vol 263-266 ◽

pp. 1600-1604

Author(s):

Qiang Liu ◽

Jian Hua Zhang

Keyword(s):

Access Control ◽

Decision Process ◽

Large Scale ◽

Control Model ◽

Main Stream ◽

Access Control Model ◽

Distributed Application ◽

Role Based ◽

Set Up

Role-Based Access Control (RBAC) model is the main-stream access control model. When addressing large-scale and distributed application, the highest Security Administrator(SA) of RBAC model always try to transfer his management authority to his inferior SAs to decrease his workload. However, How to ensure that these inferior SAs perform their management authorities legally is a big problem. Although there are a technology framework of administrative RBAC model, named ARBAC97, the supervise mechanism and audit mechanism on the utilization of transferred authorities is incomplete in RBAC model. In this research, an audit-integrated ARBAC (au-ARBAC) model is presented. In the au-ARBAC model, a right and liability mechanism has been set up, an audit role is defined and auditing permission is assigned to this role. At the same time, we put forwards two types basic audit business: routine audit and accident audit. As to accident audit, a decision process for division of responsibility is designed to clarify the responsibility of wrongdoer SAs. The Au-ARBAC model can help to improve the Consciousness of authorization responsibility and to perform their management authorities responsibly and legally.

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

A Security Framework for Electronic Medical Record

10.32628/cseit20634 ◽

2020 ◽

pp. 01-11

Author(s):

Obaloje Nkem Daniel

Keyword(s):

Access Control ◽

Medical Record ◽

Electronic Medical Record ◽

Health Sector ◽

Security And Privacy ◽

Security Framework ◽

Record System ◽

Wide Range ◽

Electronic Medical Record (EMR) is basically the digital equivalent of paper records, or charts at a clinician’s office. EMR assist and make easier the services rendered by a wide range of medical practitioners such as physicians, nurses, pharmacists and many others, hence, increasing the safety of patients. It's importance in the health sector cannot be overemphasized. The designed framework aims at identifying security challenges in the use and adoption of EMR, to design and implement a framework that will address issues identified in the use and adoption of EMR. This study presented a security framework to improve the security and privacy issues of EMRs by adopting Role Based Access Control and RSA cryptography. Role Based Access Control (RBAC) model was used because of its flexibility to support minimal functionality and its simplistic mode of assigning roles and permissions to users. In conclusion, this research was able to improve the security of EMRs and hence will increase its acceptance by health institutions which will bring about improved health services, especially in developing countries were manual record system are still prominent.

Handbook of Research on Security Considerations in Cloud Computing - Advances in Information Security, Privacy, and Ethics ◽

Access Control Framework for Cloud Computing

10.4018/978-1-4666-8387-7.ch015 ◽

2015 ◽

pp. 314-325

Author(s):

Kashif Munir ◽

Lawan A. Mohammed

Keyword(s):

Cloud Computing ◽

Access Control ◽

Job Functions ◽

Access Control Models ◽

Control Models ◽

Control Framework ◽

Role Based ◽

Access Privileges

Access control is generally a rule or procedure that allows, denies, restricts or limit access to system's resources. It may, as well, monitor and record all attempts made to access a system. Access Control may also identify users attempting to access unauthorized resources. It is a mechanism which is very much important for protection in computer security. Various access control models are in use, including the most common Mandatory Access Control (MAC), Discretionary Access Control (DAC) and Role Based Access Control (RBAC). All these models are known as identity based access control models. In all these access control models, user (subjects) and resources (objects) are identified by unique names. Identification may be done directly or through roles assigned to the subjects. These access control methods are effective in unchangeable distributed system, where there are only a set of Users with a known set of services. For this reason, we propose a framework which is well suited to many situations in cloud computing where users or applications can be clearly separated according to their job functions. In this chapter, we proposes a role based access control framework with various features including security of sensitive data, authorization policy and secure data from hackers. Our proposed role based access control algorithm provides tailored and fine level of user access control services without adding complexity, and supports access privileges updates dynamically when a user's role is added or updated.