Situational awareness based risk-Adaptable access control in enterprise networks

Brian Lee, Roman Vanickis, Franklin Rogelio, Paul Jacob

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

9 Citations (Scopus)

Abstract

As the computing landscape evolves towards distributed architectures such as Internet of Things (IoT), enterprises are moving away from traditional perimeter based security models toward so called "zero trust networking" (ZTN) models that treat both the intranet and Internet as equally untrustworthy. Such security models incorporate risk arising from dynamic and situational factors, such as device location and security risk level risk, into the access control decision. Researchers have developed a number of risk models such as RAdAC (Risk Adaptable Access Control) to handle dynamic contexts and these have been applied to medical and other scenarios. In this position paper we describe our ongoing work to apply RAdAC to ZTN. We develop a policy management framework, FURZE, to facilitate fuzzy risk evaluation that also defines how to adapt to dynamically changing contexts. We also consider how enterprise security situational awareness (SSA) - which describes the potential impact to an organisations mission based on the current threats and the relative importance of the information asset under threat - can be incorporated into a RAdAC scheme.

Original languageEnglish
Title of host publicationIoTBDS 2017 - Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security
EditorsMuthu Ramachandran, Victor Mendez Munoz, Verena Kantere, Gary Wills, Robert Walters, Victor Chang
PublisherSciTePress Digital Library
Pages400-405
Number of pages6
ISBN (Electronic)9789897582455
DOIs
Publication statusPublished - 2017
Event2nd International Conference on Internet of Things, Big Data and Security, IoTBDS 2017 - Porto, Portugal
Duration: 24 Apr 201726 Apr 2017

Publication series

NameIoTBDS 2017 - Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security

Conference

Conference2nd International Conference on Internet of Things, Big Data and Security, IoTBDS 2017
Country/TerritoryPortugal
CityPorto
Period24/04/1726/04/17

Keywords

  • RAdAC
  • Risk based Access Control
  • Security Situational Awareness
  • Zero-Trust Networking

Fingerprint

Dive into the research topics of 'Situational awareness based risk-Adaptable access control in enterprise networks'. Together they form a unique fingerprint.

Cite this