Performance Analysis of ABAC and ABAC with Trust (ABAC-T) in Fine Grained Access Control Model

Abirami, G.; Venkataraman, Revathi

doi:10.1109/icoac48765.2019.246870

Cited by 9 publications

(7 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…It can come from the protocol level or integrating various access control mechanisms into a single mechanism. For instance, trust is integrated into ABAC to improve system functionality, scalability, security when accessing a resource [94]. In this case, the concept of trust is considered an attribute to enforce access control rules and policy specifications.…”

Section: Discussion and Future Research Opportunitiesmentioning

confidence: 99%

Protocol-Based and Hybrid Access Control for the IoT: Approaches and Research Opportunities

Pal

Jadidi

2021

Sensors

View full text Add to dashboard Cite

Internet of Things (IoT) applications and services are becoming more prevalent in our everyday life. However, such an interconnected network of intelligent physical entities needs appropriate security to sensitive information. That said, the need for proper authentication and authorization is paramount. Access control is in the front line of such mechanisms. Access control determines the use of resources only to the specified and authorized users based on appropriate policy enforcement. IoT demands more sophisticated access control in terms of its usability and efficiency in protecting sensitive information. This conveys the need for access control to serve system-specific requirements and be flexibly combined with other access control approaches. In this paper, we discuss the potential for employing protocol-based and hybrid access control for IoT systems and examine how that can overcome the limitations of traditional access control mechanisms. We also focus on the key benefits and constraints of this integration. Our work further enhances the need to build hierarchical access control for large-scale IoT systems (e.g., Industrial IoT (IIoT) settings) with protocol-based and hybrid access control approaches. We, moreover, list the associated open issues to make such approaches efficient for access control in large-scale IoT systems.

show abstract

Section: Discussion and Future Research Opportunitiesmentioning

confidence: 99%

Protocol-Based and Hybrid Access Control for the IoT: Approaches and Research Opportunities

Pal

Jadidi

2021

Sensors

View full text Add to dashboard Cite

show abstract

“…is access control model is called ABAC. Abirami et al added trust attribute values to ABAC, which are got from different trust evaluation algorithms or models, and used them to improve the security performance of the model [24,25]. Zhang et al use signatures to ensure that the verification process does not disclose attributes [26].…”

Section: Related Workmentioning

confidence: 99%

“…(2) When the bumps of the vehicle exceed normal conditions, the average bumps data of the road section can help judge whether the current vehicle is Various efficient authentication mechanisms Single, undiversified authentication result [20][21][22][23] Enhance the dynamic nature of RBAC, security, as far as possible to weaken the role of permissions encapsulation generated by the role of granularity issues ere is always the problem of static role permissions. e overall permission system cannot affect role permissions [24][25][26][27][28][29][30][31][32] e ABAC attribute mechanism is used to improve the granularity and the orderliness of permissions. To enhance ABAC security by adding unique attribute values ABAC makes the overall model more difficult to manage as the number of attributes increases.…”

Section: Permission Adjust Requirements In the Emergencies Of Thementioning

confidence: 99%

Service-Based Hybrid Access Control Technology with Priority Level for the Internet of Vehicles under the Cloud Architecture

Xie

Yang

Wang

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

The communication process of devices in IoV under cloud architecture needs to be protected by access control models. However, existing access control models have difficulty establishing the appropriate granularity of permissions in the face of large amounts of data in IoV. Moreover, the access control model may need to temporarily change user privileges to accommodate the dynamic nature of IoV scenarios, a requirement that is difficult to implement for traditional access control models. The unstable connection status of devices in IoV also creates problems for access control. The service (composed of role and attribute) based access control model (in IoV) S-RABAC (V), under the Cloud computing architecture, introduces a formal theoretical model. The model uses attribute grouping and prioritization mechanisms to form a hierarchical structure. The permission combination pattern in the hierarchical structure can avoid duplicate permissions and reduce the number of permissions while ensuring fine-grained permissions. Different layers in the model have different priorities, and when a user’s permission requires temporary changes, it can be adjusted to the corresponding layers according to the user’s priority. In addition, users are allowed to keep their assigned privileges for a period to avoid frequent access control because of unstable connections. We have implemented the proposed access control model in Alibaba Cloud Computing and given six example demonstrations. The experiment shows that this is an access control model that can protect IoV security more effectively. Various unique mechanisms in the model enable S-RABAC(V) to improve the overall access control efficiency. The model adds some extra features compared to ABAC and RBAC and can generate more access control decisions using the priority mechanism.

show abstract

“…The application area of power IOT security covers all aspects of power production "generation, transmission, transformation, distribution, use and regulation" [8]. The network security system of power IOT adopts the form of independent networking for network deployment and is divided into three categories: encryption device, isolation device and platform operation device.…”

Section: Introductionmentioning

confidence: 99%

Security control of unstructured data in the power IoT for isolation network between internal and external

Yang

Wang

Liang

2022

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

As a key national infrastructure, the safety of the power grid is an overall and strategic issue that affects the development of the national economy and society. With the popularization and development of the Internet of Things in the power industry, power Internet of Things terminal equipment has become a key target of network attacks. Using network attacks to damage power Internet of Things equipment has a strong detrimental power. As the main data storage method of the power Internet of Things, the security management and control of unstructured data has become the focus of the power Internet of Things security. This paper proposes a reformulation of access control policies based on the different attribute states and trust levels of power Internet of Things terminal equipment to reduce its access control authority, and on this basis, proposes a dynamic access control based on the isolation of internal and external networks. The detailed function design of each core security protection component is given, and the component module is explained.

show abstract

Performance Analysis of ABAC and ABAC with Trust (ABAC-T) in Fine Grained Access Control Model

Cited by 9 publications

References 12 publications

Protocol-Based and Hybrid Access Control for the IoT: Approaches and Research Opportunities

Protocol-Based and Hybrid Access Control for the IoT: Approaches and Research Opportunities

Service-Based Hybrid Access Control Technology with Priority Level for the Internet of Vehicles under the Cloud Architecture

Security control of unstructured data in the power IoT for isolation network between internal and external

Contact Info

Product

Resources

About