An efficient security risk estimation technique for Risk-based access control model for IoT

Atlam, Hany F.; Wills, Gary

doi:10.1016/j.iot.2019.100052

Cited by 36 publications

(37 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Also, the IoT arcade is developing dramatically. As indicated by statistically, the assessed income of Internet of Things in 2015 was USD 743 billion [15].…”

Section: Figmentioning

confidence: 98%

A Comprehensive Study on IoT security problems based on blockchain

2021

JUSST

View full text Add to dashboard Cite

IOT refers to other enhancements that integrate with the virtual and related and interactive, and create new digital organizations that build our self-sufficiency. IOT provides several performance, not to mention, collaborations now presenting different issues with the same areas of appeal, security, security, integrity and direct data. These issues are preventive in anticipation of what might come of the success of IOT applications. This study gives a general summary of IOT integration with blockchain development. An internal and external measurement of the combination of block-chain to IOT model has been introduced, which has the advantages of access and will how blockchain will solve IoT concerns. Blockchain designing can be utilized as a help for different IOT applications. This is trailed by a glance at the effect of coordinating man-made consciousness (AI) into IOT and blockchain. At long last, the effect of blockchain on IOT investigation is tended to.

show abstract

“…Also, the IoT arcade is developing dramatically. As indicated by statistically, the assessed income of Internet of Things in 2015 was USD 743 billion [15].…”

Section: Figmentioning

confidence: 98%

A Comprehensive Study on IoT security problems based on blockchain

2021

JUSST

View full text Add to dashboard Cite

show abstract

“…Based on the recommendations of the literature review, the fuzzy logic system was implemented in [9] to resolve the unavailability of datasets and provide a quantitative and a numeric risk value for each access request to determine the access decision. Although the fuzzy logic system provides accurate and realistic risk values to implement the risk-based access control model, the major issue associated with it was the scalability and inability to learn.…”

Section: Related Workmentioning

confidence: 99%

“…An access control model for the IoT system is intended to serve hundreds or thousands of users. Based on the experimental results discussed in [9], the risk estimation using the fuzzy logic system requires 57.38 s to estimate the security risks of 1000 access requests. This response time is efficient for a small network of devices, but with the IoT system, there are thousands of devices per network.…”

Section: Related Workmentioning

confidence: 99%

“…A dynamic risk-based access control model for the IoT was proposed by the authors and discussed in [8,9,32]. The proposed model has four inputs: user/agent context, resource sensitivity, action severity, and risk history, as shown in Figure 1.…”

Section: Risk-based Access Control Modelmentioning

confidence: 99%

“…The input involved risk factors: user context, resource sensitivity, action severity, and risk history. Then, the fuzzy logic system was implemented based on the input of IoT security experts [9] to provide a numeric risk value for each input combination. The output of the fuzzy logic system with input was used to build a dataset to train the neural network and select the most appropriate learning algorithm that provided the optimal performance for the risk estimation process.…”

Section: Implementation Of the Proposed Nfs Modelmentioning

confidence: 99%

See 2 more Smart Citations

Efficient NFS Model for Risk Estimation in a Risk-Based Access Control Model

Atlam

Azad

Fadhel

2022

Sensors

Self Cite

View full text Add to dashboard Cite

Providing a dynamic access control model that uses real-time features to make access decisions for IoT applications is one of the research gaps that many researchers are trying to tackle. This is because existing access control models are built using static and predefined policies that always give the same result in different situations and cannot adapt to changing and unpredicted situations. One of the dynamic models that utilize real-time and contextual features to make access decisions is the risk-based access control model. This model performs a risk analysis on each access request to permit or deny access dynamically based on the estimated risk value. However, the major issue associated with building this model is providing a dynamic, reliable, and accurate risk estimation technique, especially when there is no available dataset to describe risk likelihood and impact. Therefore, this paper proposes a Neuro-Fuzzy System (NFS) model to estimate the security risk value associated with each access request. The proposed NFS model was trained using three learning algorithms: Levenberg–Marquardt (LM), Conjugate Gradient with Fletcher–Reeves (CGF), and Scaled Conjugate Gradient (SCG). The results demonstrated that the LM algorithm is the optimal learning algorithm to implement the NFS model for risk estimation. The results also demonstrated that the proposed NFS model provides a short and efficient processing time, which can provide timeliness risk estimation technique for various IoT applications. The proposed NFS model was evaluated against access control scenarios of a children’s hospital, and the results demonstrated that the proposed model can be applied to provide dynamic and contextual-aware access decisions based on real-time features.

show abstract

Holistic Authentication Framework for Virtual Agents; UK Banking Industry

Hettiarachchige

Jahankhani

2021

Advanced Sciences and Technologies for Security Applications

View full text Add to dashboard Cite

An efficient security risk estimation technique for Risk-based access control model for IoT

Cited by 36 publications

References 29 publications

A Comprehensive Study on IoT security problems based on blockchain

A Comprehensive Study on IoT security problems based on blockchain

Efficient NFS Model for Risk Estimation in a Risk-Based Access Control Model

Holistic Authentication Framework for Virtual Agents; UK Banking Industry

Contact Info

Product

Resources

About