Situational awareness based risk-adaptable access control in enterprise networks.
| dc.contributor.author | Lee, Brian | |
| dc.contributor.author | Vanickis, Roman | |
| dc.contributor.author | Rogelio, Franklin | |
| dc.contributor.author | Jacob, Paul | |
| dc.date.accessioned | 2020-05-20T09:13:55Z | |
| dc.date.available | 2020-05-20T09:13:55Z | |
| dc.date.copyright | 2017 | |
| dc.date.issued | 2017-03 | |
| dc.identifier.citation | Lee, B., Vanickis, V., Rogelio, F., Jacob, P. (2017). Situational awareness based risk-adaptable access control in enterprise networks. In ICC '17: Proceedings of the Second International Conference on Internet of things, Data and Cloud Computing. Porto, Portugal. 16-17 June 2017. | en_US |
| dc.identifier.isbn | 978-1-4503-4774-7 | |
| dc.identifier.other | Conferences - Software Research Institute - AIT | en_US |
| dc.identifier.uri | http://research.thea.ie/handle/20.500.12065/3217 | |
| dc.description.abstract | As the computing landscape evolves towards distributed architectures such as Internet of Things (IoT), enterprises are moving away from traditional perimeter based security models toward so called “zero trust networking” (ZTN) models that treat both the intranet and Internet as equally untrustworthy. Such security models incorporate risk arising from dynamic and situational factors, such as device location and security risk level risk, into the access control decision. Researchers have developed a number of risk models such as RAdAC (Risk Adaptable Access Control) to handle dynamic contexts and these have been applied to medical and other scenarios. In this position paper we describe our ongoing work to apply RAdAC to ZTN. We develop a policy management framework, FURZE, to facilitate fuzzy risk evaluation that also defines how to adapt to dynamically changing contexts. We also consider how enterprise security situational awareness (SSA) - which describes the potential impact to an organisations mission based on the current threats and the relative importance of the information asset under threat - can be incorporated into a RAdAC scheme. | en_US |
| dc.format | en_US | |
| dc.language.iso | en | en_US |
| dc.publisher | Association for Computing Machinery | en_US |
| dc.relation.ispartof | ICC '17: Proceedings of the Second International Conference on Internet of things, Data and Cloud Computing | en_US |
| dc.rights | Attribution-NonCommercial-NoDerivs 3.0 Ireland | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/ie/ | * |
| dc.subject | Risk based access control | en_US |
| dc.subject | RAdAC | en_US |
| dc.subject | Zero-trust networking | en_US |
| dc.subject | Security situational awareness | en_US |
| dc.title | Situational awareness based risk-adaptable access control in enterprise networks. | en_US |
| dc.type | Other | en_US |
| dc.contributor.grantno | 70071 | en_US |
| dc.contributor.sponsor | European Union’s Horizon 2020 research and innovation programme | en_US |
| dc.description.peerreview | yes | en_US |
| dc.identifier.conference | ICC '17: Proceedings of the Second International Conference on Internet of things, Data and Cloud Computing. Porto, Portugal. 16-17 June 2017. | |
| dc.identifier.orcid | https://orcid.org/0000-0002-8475-4074 | |
| dc.identifier.orcid | https://orcid.org/0000-0001-5090-2756 | |
| dc.rights.access | Open Access | en_US |
| dc.subject.department | Software Research Institute AIT | en_US |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-NoDerivs 3.0 Ireland