Role - based Access Control in Educational Administration System

Liu, Dongdong; Xu, Shaoyi; Yan, Zhang; Tan, Fuxiao; Niu, Lei; Zhao, Jia

doi:10.1051/matecconf/201713900120

Cited by 3 publications

(2 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many important cryptographic operations, such as message sending and receiving between components and the functions played by each component, are supported by SPDL. This tool can be used to (1) confirm that the security claims in the protocol description are true, (2) automatically generate and confirm suitable security claims for a protocol, and (3) fully characterize the protocol for an analysis.…”

Section: Scythermentioning

confidence: 99%

See 1 more Smart Citation

Towards for Designing Educational System Using Role-Based Access Control

2023

IJIES

View full text Add to dashboard Cite

During the COVID-19 pandemic, online electronic educational systems have been used in most schools and universities as they were forced to move their operations from classrooms to online settings. However, these systems face a serious security issue. Access control considers the core of data security for any implemented system. This paper presents the well-known role-based access control (RBAC) approach to enhance system security and improve user role and system privilege. This study also addresses the issues faced by extant schemes, such as security risk tolerance, by proposing a privacy-preserving educational system that utilizes RBAC and smart multifactor authentication. This approach uses an asymmetric cryptosystem based on the Elgamal digital signature operation to provide multi-factor authentication while relying on low-complexity cryptographic hash functions. RBAC manages system security via the "user classification, role authorization, and unified management" approach. By limiting the amount of data that users can access, RBAC is particularly suited for multi-level applications. This approach also uses informal analysis and the Scyther tool to conduct extensive formal security proofs. RBAC offers many benefits, including mutual authentication, identity anonymity, forward secrecy, key management, and high resistance to well-known attacks, such as phishing, replay, Man-In-The-Middle (MITM), and insider attacks. Compared with other schemes, RBAC offers more security features and boasts higher cost effectiveness in processing and communication. Furthermore, our work achieves a good balance between performance and security complexity when compared to the state-of-the-art. So, we get good results at a cost of 0.253 ms for computing and 1326 bits for communication.

show abstract

Section: Scythermentioning

confidence: 99%

“…The educational system is one of the most important benefactors of such technology. Educational administration systems need to be secure to support teaching and learning for both teachers and students [1,2].…”

Section: Introductionmentioning

confidence: 99%