Towards a Zero Trust Based Hybrid Access Control Model for Medical Data

被引：0

作者：

Wilcox, Colin ^{[1
]}

Welsh, Kristopher ^{[1
]}

Djahel, Soufiene ^{[2
]}

Costen, Nicholas ^{[1
]}

Giagos, Vasileios ^{[3
]}

机构：

[1] Manchester Metropolitan Univ, Dept Comp & Math, Manchester, Lancs, England

[2] Coventry Univ, Ctr Future Transport & Cities, Coventry, W Midlands, England

[3] Essex Univ, Sch Math Stat & Actuarial Sci, Colchester, Essex, England

来源：

2024 INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGIES FOR DISASTER MANAGEMENT, ICT-DM 2024 | 2024年

关键词：

access control; modelling; least privilege; RBAC; ABAC; MAC; DAC; zero trust;

D O I：

10.1109/ICT-DM62768.2024.10798961

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper addresses some of the limitations of current hybrid access control models, in particular the issues surrounding managed rights inheritance, a model's consistency and its ability to reflect changes in environment without losing integrity or flexibility. Our approach describes a layered model design which allows more or less detail to be added, in real-time, to reflect changes in the real world. The model provides time-based inherited access control following the principles of zero trust to minimise risk whilst preserving its integrity and flexibility. This paper concludes by providing a comparison of how our approach differs from traditional techniques and the areas in which improvements can be seen.

引用

页数：7

共 22 条

[1] Traditional and Hybrid Access Control Models: A Detailed Survey [J].

Aftab, Muhammad Umar ;

Hamza, Ali ;

Oluwasanmi, Ariyo ;

Nie, Xuyun ;

Sarfraz, Muhammad Shahzad ;

Shehzad, Danish ;

Qin, Zhiguang ;

Rafiq, Ammar .

SECURITY AND COMMUNICATION NETWORKS, 2022, 2022

[2]

Alipour H.S., 2012, P 2012 INT C IND ENG

[3]

Bell D.E., 1973, ADD 760-768

[4]

Cai L., 2019, Data Science Journal, P1

[5]

Ferraiolo D. F., 2001, ACM Transactions on Information and Systems Security, V4, P224, DOI 10.1145/501978.501980

[6]

Ge XC, 2004, BIOMED SCI INSTRUM, V3084, P234

[7]

Hu V.C., 2017, NIST Special Publication, V800-192

[8]

Kaloyanova K., 2021, INFORM SYSTEMS GRID, P2933

[9]

Krastev E., 2019, 8 INT C GLOB HLTH CH, P8

[10] Preserving Data Privacy via Federated Learning: Challenges and Solutions [J].

Li, Zengpeng ;

Sharma, Vishal ;

Mohanty, Saraju P. .

IEEE CONSUMER ELECTRONICS MAGAZINE, 2020, 9 (03) :8-16

← 1 2 3 →