Shaikh, Riaz Ahmed ORCID: https://orcid.org/0000-0001-6666-0253, Adi, Kamel, Logrippo, Luigi and Mankovski, Serge (2011) Risk-based decision method for access control systems. In: 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011. 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011 . UNSPECIFIED, CAN, pp. 189-192. ISBN 9781457705847
Full text not available from this repository. (Request a copy)Abstract
Traditional security and access control systems, such as MLS/Bell-LaPadula, RBAC are rigid and do not contain automatic mechanisms through which a system can increase or decrease users' access to classified information. Therefore, in this paper, we propose a risk-based decision method for an access control system. Firstly, we dynamically calculate the trust and risk values for each subject-object pair. Both values are adaptive, reflecting the past behavior of the users with particular objects. The past behavior is evaluated based on the history of reward and penalty points. These are assigned by the system after the completion of every transaction. Secondly, based on the trust and risk values, an access decision is made.
Item Type: | Book Section |
---|---|
Uncontrolled Keywords: | computer science applications,software ,/dk/atira/pure/subjectarea/asjc/1700/1706 |
Faculty \ School: | Faculty of Science > School of Computing Sciences |
UEA Research Groups: | Faculty of Science > Research Groups > Cyber Security Privacy and Trust Laboratory |
Related URLs: | |
Depositing User: | LivePure Connector |
Date Deposited: | 16 Aug 2022 15:30 |
Last Modified: | 07 May 2023 06:30 |
URI: | https://ueaeprints.uea.ac.uk/id/eprint/87300 |
DOI: | 10.1109/PST.2011.5971982 |
Actions (login required)
View Item |