Ítem
Solo Metadatos
Dynamic Counter-measures for Risk-based Access Control Systems: An Evolutive Approach
| dc.creator | Díaz López, Daniel Orlando | spa |
| dc.creator | Dólera-Tormo, Ginés | spa |
| dc.creator | Gómez-Mármol, Félix | spa |
| dc.creator | Martínez-Pérez, Gregorio | spa |
| dc.date.accessioned | 2020-08-19T14:42:41Z | |
| dc.date.available | 2020-08-19T14:42:41Z | |
| dc.date.created | 2016-02-01 | spa |
| dc.description.abstract | Risk-based access control systems are a new element in access control categories, incorporating risk analysis as part of the inputs to consider when taking an authorization decision. A risk analysis over a resource leads generally to temporal allocation of the resource in a risk level (e.g. high, medium, low). Ideally, for each risk level and kind of resource, the access control system should take an authorization decision (expressed like a permit or deny) and the system administrator should also trigger specific counter-measures to protect resources according to their risk level. In a small access control system with few resources it is possible for an administrator to follow the risk level changes and react promptly with counter-measures; but in medium/large access control systems it is almost unfeasible to react in a customized way to thousands of risk level emergencies asking for attention. In this paper we propose the adoption of dynamic counter-measures (which can be integrated within access control policies) changing along time to face variations in the risk level of every resource, bringing two main benefits, namely: (i) a suitable resource protection according to the risk level (not under or over estimated) and (ii) an access control system granting/denying access depending on the fulfillment of a set of security controls applicable in an authorization access request. To define the most appropriate set of counter-measures applicable for a specific situation we define a method based on genetic algorithms, which allows to find a solution in a reasonable time frame satisfying different required conditions. Finally, the conducted experiments show the applicability of our proposal in a real scenario. | eng |
| dc.format.mimetype | application/pdf | |
| dc.identifier.doi | https://doi.org/10.1016/j.future.2014.10.012 | |
| dc.identifier.issn | ISSN: 0167-739X | |
| dc.identifier.uri | https://repository.urosario.edu.co/handle/10336/27550 | |
| dc.language.iso | eng | spa |
| dc.publisher | Elsevier | spa |
| dc.relation.citationEndPage | 335 | |
| dc.relation.citationStartPage | 321 | |
| dc.relation.citationTitle | Future Generation Computer Systems | |
| dc.relation.citationVolume | Vol. 55 | |
| dc.relation.ispartof | Future Generation Computer Systems, ISSN: 0167-739X, Vol.55 (February, 2016); pp. 321-335 | spa |
| dc.relation.uri | https://www.sciencedirect.com/science/article/abs/pii/S0167739X14002052 | spa |
| dc.rights.accesRights | info:eu-repo/semantics/restrictedAccess | |
| dc.rights.acceso | Restringido (Acceso a grupos específicos) | spa |
| dc.source | Future Generation Computer Systems | spa |
| dc.source.instname | instname:Universidad del Rosario | |
| dc.source.reponame | reponame:Repositorio Institucional EdocUR | |
| dc.subject.keyword | ISO 27001 | spa |
| dc.subject.keyword | ISMS | spa |
| dc.subject.keyword | Risk management | spa |
| dc.subject.keyword | Access control systems | spa |
| dc.subject.keyword | Genetic algorithms | spa |
| dc.subject.keyword | Counter-measures | spa |
| dc.title | Dynamic Counter-measures for Risk-based Access Control Systems: An Evolutive Approach | spa |
| dc.title.TranslatedTitle | Contramedidas dinámicas para sistemas de control de acceso basados ??en riesgos: un enfoque evolutivo | spa |
| dc.type | article | eng |
| dc.type.hasVersion | info:eu-repo/semantics/publishedVersion | |
| dc.type.spa | Artículo | spa |
