Context Based Smart Access Control on BYOD Environments

Kang, Dongwan; Oh, Joohyung; Im, Chaetae

doi:10.1007/978-3-319-15087-1_13

Cited by 5 publications

(5 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This can be underpinned by GPS or a mobile network. Moreover, not only should information regarding physical locations be monitored and tracked, but rather contextual information (e.g., time-based, behavioral-based, and statistical-based information) should also be considered to control access [32]. Issues regarding privacy concerns may be raised, but monitoring and tracking systems can only be active during specific times, such as when a user borrows an organization-owned device for ad hoc work, or when a user is connecting to the corporate network using their BYOD device during working hours.…”

Section: Monitoring and Trackingmentioning

confidence: 99%

A Policy-Based Framework for Preserving Confidentiality in BYOD Environments: A Review of Information Security Perspectives

Vorakulpipat

Sirapaisan

Rattanalerdnusorn

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

Today, many organizations allow their employees to bring their own smartphones or tablets to work and to access the corporate network, which is known as a bring your own device (BYOD). However, many such companies overlook potential security risks concerning privacy and confidentiality. This paper provides a review of existing literature concerning the preservation of privacy and confidentiality, with a focus on recent trends in the use of BYOD. This review spans a large spectrum of information security research, ranging from management (risk and policy) to technical aspects of privacy and confidentiality in BYOD. Furthermore, this study proposes a policy-based framework for preserving data confidentiality in BYOD. This framework considers a number of aspects of information security and corresponding techniques, such as policy, location privacy, centralized control, cryptography, and operating system level security, which have been omitted in previous studies. The main contribution is to investigate recent trends concerning the preservation of confidentiality in BYOD from the perspective of information security and to analyze the critical and comprehensive factors needed to strengthen data privacy in BYOD. Finally, this paper provides a foundation for developing the concept of preserving confidentiality in BYOD and describes the key technical and organizational challenges faced by BYOD-friendly organizations.

show abstract

Section: Monitoring and Trackingmentioning

confidence: 99%

A Policy-Based Framework for Preserving Confidentiality in BYOD Environments: A Review of Information Security Perspectives

Vorakulpipat

Sirapaisan

Rattanalerdnusorn

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…However, this work identi ed some limitations in using clustering in building a device or device pro ling. e abnormal behaviour detection technique by Kang et al [11] uses contextual data of users having access to an enterprise network. e technique models a device's contextual data, such as the type of device used, access time, access location and time of use and builds a usage pa ern for detection of abnormal behaviours inside an enterprise network.…”

Section: Bring Your Own Device Enterprise Networkmentioning

confidence: 99%

“…gathering information about an a acker) but does not detect abnormal behaviour or a acks in a network. Whereas, the research approaches in [11,12,14,17] developed a behaviour proling techniques that builds a behaviour pro les from device usage, network characteristics and contextual network data to detect a pa ern(s) that deviates from the normal pro le and alert a network administrator. e novelty of BBOD is that it combines both the ngerprinting and behaviour pro ling approaches to identify, detect and block the abnormal device identi ed in a network.…”

Section: Device Typementioning

confidence: 99%

“…e NAC system uni es endpoint security solutions to enable and enforce access control security policies to devices connecting to an enterprise network through a RADIUS authentication server; which is a prerequisite for 802.1x authentication [11]. e Radius server enables the creation of unique usernames and passwords and could help network administrators to revoke access to lost or stolen employee devices.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Behavior-Based Outlier Detection for Network Access Control Systems

Muhammad

Ayesh

Wagner

2019

Proceedings of the 3rd International Conference on Future Networks and Distributed Systems

View full text Add to dashboard Cite

Network Access Control (NAC) systems manage the access of new devices into enterprise networks to prevent unauthorised devices from a acking network services. e main di culty with this approach is that NAC cannot detect abnormal behaviour of devices connected to an enterprise network. ese abnormal devices can be detected using outlier detection techniques. Existing outlier detection techniques focus on speci c application domains such as fraud, event or system health monitoring. In this paper, we review a acks on Bring Your Own Device (BYOD) enterprise networks as well as existing clustering-based outlier detection algorithms along with their limitations. Importantly, existing techniques can detect outliers, but cannot detect where or which device is causing the abnormal behaviour. We develop a novel behaviour-based outlier detection technique which detects abnormal behaviour according to a device type pro le. Based on data analysis with K-means clustering, we build device type pro les using Clustering-based Multivariate Gaussian Outlier Score (CMGOS) and lter out abnormal devices from the device type pro le. e experimental results show the applicability of our approach as we can obtain a device type pro le for ve dell-netbooks, three iPads, two iPhone 3G, two iPhones 4G and Nokia Phones and detect outlying devices within the device type pro le.

show abstract

“…NAC, which performed control based on IP addresses, is not the basic solution even though it has added technologies like diversification of authentication of network access time point, management of harmful traffic after authentication, role-based control, and integrity check with increasingly popular cloud services [1][2][3][4][5][6][7][8][9][10].…”

Section: Related Work and Researchmentioning

confidence: 99%

Study of Measures for Detecting Abnormal Access by Establishing the Context Data-Based Security Policy in the BYOD Environment

2015

Lecture Notes in Electrical Engineering

View full text Add to dashboard Cite

With the trend of BYOD (Bring Your Own Device), i.e., using personal mobile devices for work, proliferating, one can easily find people doing their work anytime, anywhere. BYOD has the benefits of reducing business expense and increasing work productivity and efficiency. Nonetheless, the uncontrolled access of internal networks by the personal devices, for which enterprises have limitations in controlling, exposes the companies to security threats such as leak of confidential data and access by unauthorized users, yet there are inadequate countermeasures. Therefore, there is a need for a means of collecting the personalized context data of the user accessing the internal network and detecting and controlling abnormal user access by establishing a context-based policy. This paper presents measures for detecting abnormal access by collecting the context data according to the various devices and access environment and establishing the context data-based policy under the BYOD environment.

show abstract

Context Based Smart Access Control on BYOD Environments

Cited by 5 publications

References 5 publications

A Policy-Based Framework for Preserving Confidentiality in BYOD Environments: A Review of Information Security Perspectives

A Policy-Based Framework for Preserving Confidentiality in BYOD Environments: A Review of Information Security Perspectives

Behavior-Based Outlier Detection for Network Access Control Systems

Study of Measures for Detecting Abnormal Access by Establishing the Context Data-Based Security Policy in the BYOD Environment

Contact Info

Product

Resources

About