A Secure Multi-factor Authentication Protocol for Healthcare Services Using燙loud-based SDN

Midha, Sugandhi; Verma, Sahil; Kavita, .; Mittal, Mohit; Jhanjhi, N. Z.; Masud, Mehedi; AlZain, Mohammed A.

doi:10.32604/cmc.2023.027992

Cited by 9 publications

(4 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…RBAC enables mental health care organizations to assign specific access privileges to users based on their roles and responsibilities ( Garg et al, 2023 ), preventing unauthorized access and ensuring users only access necessary information for their job functions. MFA enhances security by requiring users to provide multiple forms of authentication, such as using hash functions ( Midha et al, 2023 ). Data anonymization ( Tomás, Rasteiro & Bernardino, 2022 ) is another critical aspect of data security.…”

Section: Discussionmentioning

confidence: 99%

An adaptive data-driven architecture for mental health care applications

Sundaram,

Subramaniam,

Ab Hamid

et al. 2024

PeerJ

View full text Add to dashboard Cite

Background In the current era of rapid technological innovation, our lives are becoming more closely intertwined with digital systems. Consequently, every human action generates a valuable repository of digital data. In this context, data-driven architectures are pivotal for organizing, manipulating, and presenting data to facilitate positive computing through ensemble machine learning models. Moreover, the COVID-19 pandemic underscored a substantial need for a flexible mental health care architecture. This architecture, inclusive of machine learning predictive models, has the potential to benefit a larger population by identifying individuals at a heightened risk of developing various mental disorders. Objective Therefore, this research aims to create a flexible mental health care architecture that leverages data-driven methodologies and ensemble machine learning models. The objective is to proficiently structure, process, and present data for positive computing. The adaptive data-driven architecture facilitates customized interventions for diverse mental disorders, fostering positive computing. Consequently, improved mental health care outcomes and enhanced accessibility for individuals with varied mental health conditions are anticipated. Method Following the Preferred Reporting Items for Systematic Reviews and Meta-Analyses guidelines, the researchers conducted a systematic literature review in databases indexed in Web of Science to identify the existing strengths and limitations of software architecture relevant to our adaptive design. The systematic review was registered in PROSPERO (CRD42023444661). Additionally, a mapping process was employed to derive essential paradigms serving as the foundation for the research architectural design. To validate the architecture based on its features, professional experts utilized a Likert scale. Results Through the review, the authors identified six fundamental paradigms crucial for designing architecture. Leveraging these paradigms, the authors crafted an adaptive data-driven architecture, subsequently validated by professional experts. The validation resulted in a mean score exceeding four for each evaluated feature, confirming the architecture’s effectiveness. To further assess the architecture’s practical application, a prototype architecture for predicting pandemic anxiety was developed.

show abstract

Section: Discussionmentioning

confidence: 99%

An adaptive data-driven architecture for mental health care applications

Sundaram,

Subramaniam,

Ab Hamid

et al. 2024

PeerJ

View full text Add to dashboard Cite

show abstract

“…Practical modifications have been proposed to enhance the security of existing protocols under various threat scenarios. Sugandhi et al [46] addressed security concerns in cloud-based SDN integration, particularly in healthcare services. Patient data security is a primary concern, as it is stored centrally in the cloud and is vulnerable to malicious attacks.…”

Section: ) Multi-factor Authenticationmentioning

confidence: 99%

Security Control and Data Planes of SDN: A Comprehensive Review of Traditional, AI, and MTD Approaches to Security Solutions

Abdi,

Audah,

Salh

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Software-Defined Networking (SDN) is a groundbreaking technology that has transformed network management significantly. By integrating data and control, SDN offers unparalleled flexibility and responsiveness, thereby overcoming the limitations of conventional network architectures. However, a centralized controller, which is a hallmark of SDN, is a double-edged security sword that offers easy control. This also becomes a dangerous point of failure for the entire network. To the best of our knowledge, this is the first comprehensive study to explore traditional-based, artificial intelligence (AI)-based, and moving target defense (MTD) approaches to securing SDN. The study begins with a survey of traditional security solutions for SDN, encompassing authentication, authorization, encryption, security protocols, firewalls, and flow verification, by addressing security threats and vulnerabilities in both data and control planes. The study then investigates the application of AI-based security solutions in an SDN environment, focusing on how Machine Learning (ML) and Deep Learning (DL) techniques are leveraged to address advanced security threats. Additionally, the survey examines MTD mechanisms within data and control plane security. Several in-depth techniques, including the randomization of Internet Protocol (IP) and Media Access Control (MAC) addresses, port numbers, and flow tables, and delving into the relationship between security threats, MTD strategies, and the specific controllers employed in experimental implementations. We utilized the widely recognized STRIDE cybersecurity framework to systematically identify and evaluate the potential threats to SDN security. Our analysis resulted in a comprehensive list of security challenges, and we propose future research directions aimed at addressing emerging threats in both the data and control planes.

show abstract

“…Furthermore, we summarize the use of MFA through a different number of factors for cloud computing environments in Table 1. These cloud-based environments include general cloud computing architecture [38][39][40][41], cloud storage [42][43][44][45], multi-cloud [46], cloud-based logistics information systems [47], cloud-based OTP services [48], multiple-agent cloud-based search engines [49], cloud health care [50,51], financial transactions [52], private cloud [53], and cloud-based web services [54]. Other non-cloud environments include cryptocurrency [55], websites and mobile apps [56], electronic payments [57,58], electronic voting systems [59][60][61][62], mobile voting systems [63], wireless networks [64], non-internet based applications [65], electronic document management systems [66], IoT networks [67][68][69], RFID infrastructure [70], wearable and virtual reality (VR) platforms with a gesture input interface [71], ATM systems [72], public multitouch displays [73], blockchain [74], attendance record management systems (ARMSs) [75], question-based authentication systems [76], the Internet of Medical Things (IoMT)…”

Section: Literature Reviewmentioning

confidence: 99%

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

Mostafa,

Ezz,

Elbashir

et al. 2023

Applied Sciences

View full text Add to dashboard Cite

Cloud multi-factor authentication is a critical security measure that helps strengthen cloud security from unauthorized access and data breaches. Multi-factor authentication verifies that authentic cloud users are only authorized to access cloud apps, data, services, and resources, making it more secure for enterprises and less inconvenient for users. The number of authentication factors varies based on the security framework’s architecture and the required security level. Therefore, implementing a secured multi-factor authentication framework in a cloud platform is a challenging process. In this paper, we developed an adaptive multi-factor multi-layer authentication framework that embeds an access control and intrusion detection mechanisms with an automated selection of authentication methods. The core objective is to enhance a secured cloud platform with low false positive alarms that makes it more difficult for intruders to access the cloud system. To enhance the authentication mechanism and reduce false alarms, multiple authentication factors that include the length, validity, and value of the user factor is implemented with a user’s geolocation and user’s browser confirmation method that increase the identity verification of cloud users. An additional AES-based encryption component is applied to data, which are protected from being disclosed. The AES encryption mechanism is implemented to conceal the login information on the directory provider of the cloud. The proposed framework demonstrated excellent performance in identifying potentially malicious users and intruders, thereby effectively preventing any intentional attacks on the cloud services and data.

show abstract

A Secure Multi-factor Authentication Protocol for Healthcare Services Using燙loud-based SDN

Cited by 9 publications

References 24 publications

An adaptive data-driven architecture for mental health care applications

An adaptive data-driven architecture for mental health care applications

Security Control and Data Planes of SDN: A Comprehensive Review of Traditional, AI, and MTD Approaches to Security Solutions

Strengthening Cloud Security: An Innovative Multi-Factor Multi-Layer Authentication Framework for Cloud User Authentication

Contact Info

Product

Resources

About