Fast and Efficient Multiview Access Control Mechanism for Cloud Based Agriculture Storage Management System

Agriculture and its related industries are the backbone of many countries' economic growth. To achieve an efficient agricultural management system, remote sensing forecasting and GIS technology are providing information to users/stakeholders of various agricultural application uses. This information is huge in size and is stored in the cloud computing storage environment. Minimizing data access and storage costs on such an environment is desired. For achieving fine-grained role-based access control mechanisms, researchers are now focusing on ensuring such roles are enforced correctly. Existing models, though they are using role-based access control at various levels, are facing challenges like high computation rates and storage overhead. Currently, existing systems are using XML and UML for role and user creation. To address these research challenges, this article presents a model Fast and Efficient Multi View Access Control (FEMVAC) using the Amazon S3 public cloud environment for agriculture. The model minimizes storage overhead by adopting a banarization method over UML/XML method. The experimental outcome shows that the FEMVAC method is efficient compared with existing models.

Download Full-text

Access Control in Mobile and Ubiquitous Environments

Ubiquitous and Pervasive Computing ◽

10.4018/978-1-60566-960-1.ch092 ◽

2010 ◽

pp. 1481-1497

Author(s):

Laurent Gomez ◽

Annett Laube ◽

Alessandro Sorniotti

Keyword(s):

Access Control ◽

User Authentication ◽

Control Policy ◽

Wireless Sensor ◽

Role Based Access Control ◽

Control Mechanisms ◽

Mobile Environment ◽

New Techniques ◽

Role Based ◽

Resource Constrained Devices

Access control is the process of granting permissions in accordance to an authorization policy. Mobile and ubiquitous environments challenge classical access control solutions like Role-Based Access Control. The use of context-information during policy definition and access control enforcement offers more adaptability and flexibility needed for these environments. When it comes to low-power devices, such as wireless sensor networks, access control enforcement is normally too heavy for such resource-constrained devices. Lightweight cryptography allows encrypting the data right from its production and the access is therefore intrinsically restricted. In addition, all access control mechanisms require an authenticated user. Traditionally, user authentication is performed by means of a combination of authentication factors, statically specified in the access control policy of the authorization service. Within ubiquitous and mobile environment, there is a clear need for a flexible user authentication using the available authentication factors. In this chapter, different new techniques to ensure access control are discussed and compared to the state-of-the-art.

Download Full-text

Use of Purpose and Role Based Access Control Mechanisms to Protect Data Within RDBMS

International Journal of Software Innovation ◽

10.4018/ijsi.2020010105 ◽

2020 ◽

Vol 8 (1) ◽

pp. 82-91

Author(s):

Suraj Krishna Patil ◽

Sandipkumar Chandrakant Sagare ◽

Alankar Shantaram Shelar

Keyword(s):

Access Control ◽

Privacy Preservation ◽

Original Data ◽

Sensitive Information ◽

Role Based Access Control ◽

Control Mechanisms ◽

Sensitive Data ◽

Access To Resources ◽

Key Factor ◽

Role Based

Privacy is the key factor to handle personal and sensitive data, which in large chunks, is stored by database management systems (DBMS). It provides tools and mechanisms to access and analyze data within it. Privacy preservation converts original data into some unknown form, thus protecting personal and sensitive information. Different access control mechanisms such as discretionary access control, mandatory access control is used in DBMS. However, they hardly consider purpose and role-based access control in DBMS, which incorporates policy specification and enforcement. The role based access control (RBAC) regulates the access to resources based on the roles of individual users. Purpose based access control (PuBAC) regulates the access to resources based on purpose for which data can be accessed. It regulates execution of queries based on purpose. The PuRBAC system uses the policies of both, i.e. PuBAC and RBAC, to enforce within RDBMS.

Download Full-text

Improving the Information Security of Collaborative Web Portals via Fine-Grained Role-Based Access Control

Handbook of Research on Web 2.0, 3.0, and X.0 ◽

10.4018/978-1-60566-384-5.ch024 ◽

2010 ◽

pp. 430-448

Author(s):

S. Demurjian ◽

H. Ren ◽

S. Berhe ◽

M. Devineni ◽

Sushil Vegad ◽

...

Keyword(s):

Access Control ◽

Full Range ◽

Coarse Grained ◽

Role Based Access Control ◽

Security Model ◽

Web Portals ◽

Web Based ◽

Fine Grained ◽

Role Based ◽

The Look

Collaborative portals are emerging as a viable technology to allow groups of individuals to easily author, create, update, and share content via easy-to-use Web-based interfaces, for example, MediaWiki, Microsoft’s Sharepoint, and so forth. From a security perspective, these products are often limited and coarse grained in their authorization and authentication. For example, in a Wiki, the security model is often at two ends of the spectrum: anonymous users with no authorization and limited access via readonly browsing vs. registered users with full-range of access and limited oversight in content creation and modification. However, in practice, such full and unfettered access may not be appropriate for all users and for all applications, particularly as the collaborative technology moves into commercial usage (where copyright and intellectual property are vital) or sensitive domains such as healthcare (which ushave stringent HIPAA requirements). In this chapter, we report on our research and development effort of a role-based access control for collaborative Web portals that encompasses and realizes security at the application level, the document level (authoring and viewing), and the look-and-feel of the portal itself.

Download Full-text

Role-Mining Optimization with Separation-of-Duty Constraints and Security Detections for Authorizations

Future Internet ◽

10.3390/fi11090201 ◽

2019 ◽

Vol 11 (9) ◽

pp. 201 ◽

Cited By ~ 2

Author(s):

Wei Sun ◽

Shiwei Wei ◽

Huaping Guo ◽

Hongbing Liu

Keyword(s):

Access Control ◽

Optimization Approach ◽

Role Based Access Control ◽

Control Mechanisms ◽

Engineering Technology ◽

Role Mining ◽

Novel Method ◽

Separation Of Duty ◽

Role Based ◽

The Given

Role-based access control (RBAC), which has been regarded as one of the most popular access-control mechanisms, is featured by the separation-of-duty constraints, mutually exclusive constraints, and the least-privileges principle. Role mining, a bottom-up role-engineering technology, is an effective method to migrate from a non-RBAC system to an RBAC system. However, conventional role-mining approaches not only do not consider the separation of duty constraints, but also cannot ensure the security of a constructed RBAC system when the corresponding mined results violate the separation of a duty constraint and/or the least-privileges principle. To solve these problems, this paper proposes a novel method called role-mining optimization with separation-of-duty constraints and security detections for authorizations (RMO_SODSDA), which mainly includes two aspects. First, we present a role-mining-optimization approach for satisfying the separation of duty constraints, and we constructed different variants of mutually exclusive constraints to correctly implement the given separation of duty constraints based on unconstrained role mining. Second, to ensure the security of the constructed system and evaluate authorization performance, we reduced the authorization-query problem to a maximal-satisfiability problem. The experiments validate the effectiveness and efficiency of the proposed method.

Download Full-text

Hybrid Role and Attribute Based Access Control Applied in Information Systems

Cybernetics and Information Technologies ◽

10.2478/cait-2021-0031 ◽

2021 ◽

Vol 21 (3) ◽

pp. 85-96

Author(s):

Maria Penelova

Keyword(s):

Information Systems ◽

Access Control ◽

Accounting Information ◽

Role Based Access Control ◽

Accounting Information System ◽

Fine Grained ◽

Proposed Model ◽

Control Scheme ◽

Attribute Based Access Control ◽

Role Based

Abstract It this paper it is proposed a new access control model – Hybrid Role and Attribute Based Access Control (HRABAC). It is an extension of Role-Based Access Control (RBAC). HRABAC is designed for information systems and enterprise software and combines the advantages of RBAC and Attribute-Based Access Control (ABAC). HRABAC is easy configurable, fine-grained and supports role hierarchies. The proposed model HRABAC describes the access control scheme in Laravel package laravelroles/rolespermissions, which is developed by the author of the paper, as an answer to the requirements of practice of fine-grained and easy configurable access control solution. Laravel is chosen, because it is the most popular and the most widely used PHP framework. The package laravelroles/rolespermissions is developed on Laravel so that maximum number of programmers could use it. This package contains working and tested functionalities for managing users, roles and permissions, and it is applied in accounting information system.

Download Full-text

Design of dynamic fine-grained role-based access control strategy

2012 IEEE 2nd International Conference on Cloud Computing and Intelligence Systems ◽

10.1109/ccis.2012.6664411 ◽

2012 ◽

Author(s):

Wenfang Zhao ◽

Fei Gao

Keyword(s):

Access Control ◽

Control Strategy ◽

Role Based Access Control ◽

Fine Grained ◽

Role Based

Download Full-text

Secure Outsourced Medical Data against Unexpected Leakage with Flexible Access Control in a Cloud Storage System

Security and Communication Networks ◽

10.1155/2020/8347213 ◽

2020 ◽

Vol 2020 ◽

pp. 1-20

Author(s):

Xingguang Zhou ◽

Jianwei Liu ◽

Zongyang Zhang ◽

Qianhong Wu

Keyword(s):

Access Control ◽

Medical Records ◽

Cloud Storage ◽

Storage System ◽

Role Based Access Control ◽

Security Model ◽

Access Policy ◽

Fine Grained ◽

Privacy Leakage ◽

Role Based

The application of cloud storage system has been deployed widely in recent years. A lot of electronic medical records (EMRs) are collected and uploaded to the cloud for scalable sharing among the authority users. It is necessary to guarantee the confidentiality of EMRs and the privacy of EMR owners. To achieve this target, we summarize a series of attack behaviors in the cloud storage system and present the security model against many types of unexpected privacy leakage. Privacy of unassailed EMRs is guaranteed in this model, and the influence of privacy leakage is controlled in a certain scope. We also propose a role-based access control scheme to achieve flexible access control on these private EMRs. One can access medical records only if his/her role satisfies the defined access policy, which implies a fine-grained access control. Theoretical and experimental analyses show the efficiency of our scheme in terms of computation and communication.

Download Full-text

Design and Implementation for universal Privilege Management Infrastructure

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.241-244.3125 ◽

2012 ◽

Vol 241-244 ◽

pp. 3125-3129 ◽

Cited By ~ 1

Author(s):

Jin Li

Keyword(s):

Access Control ◽

Management System ◽

Multilayer Structure ◽

Good Effect ◽

Role Based Access Control ◽

Authority Control ◽

Design And Implementation ◽

Privilege Management ◽

Role Based ◽

Privilege Management Infrastructure

For analyzing the multilayer structure of the J2EE, based on Role-Based Access Control, a model of privilege management infrastructure was designed. It was implemented after the discussion of the existing privilege management system. Moreover, the safe authority control was realized with good effect.

Download Full-text

A Declarative Fine-grained Role-based Access Control Model and Mechanism for the Web Application Domain

Proceedings of the 7th International Conference on Software Paradigm Trends ◽

10.5220/0004083400800091 ◽

2012 ◽

Keyword(s):

Access Control ◽

Web Application ◽

Control Model ◽

Role Based Access Control ◽

Application Domain ◽

Access Control Model ◽

Fine Grained ◽

Role Based ◽

The Web

Download Full-text

Deploying Privacy Improved RBAC in Web Information Systems

International Journal of Information Technologies and Systems Approach ◽

10.4018/jitsa.2011070105 ◽

2011 ◽

Vol 4 (2) ◽

pp. 70-87

Author(s):

Ioannis Mavridis

Keyword(s):

Information Systems ◽

Access Control ◽

System Development ◽

Security And Privacy ◽

Just In Time ◽

Role Based Access Control ◽

Fine Grained ◽

Web Information ◽

Web Information Systems ◽

Role Based

Access control technology holds a central role in achieving trustworthy management of personally identifiable information in modern information systems. In this article, a privacy-sensitive model that extends Role-Based Access Control (RBAC) to provide privacy protection through fine-grained and just-in-time access control in Web information systems is proposed. Moreover, easy and effective mapping of corresponding components is recognized as an important factor for succeeding in matching security and privacy objectives. Such a process is proposed to be accomplished by capturing and modeling privacy requirements in the early stages of information system development. Therefore, a methodology for deploying the mechanisms of an access control system conforming to the proposed Privacy Improved Role-Based Access Control (PIRBAC) model is presented. To illustrate the application of the proposed methodology, an application example in the healthcare domain is described.

Download Full-text