Name
Title | ||
|---|---|---|
Position Paper: Towards a Moving Target Defense Approach for Attribute-based Access Control. |
Abstract | ||
|---|---|---|
In recent years, attribute-based access control has been recognized as a convenient way to specify access mediation policies that leverage attributes originating from different security domains, e.g., independently-run organizations or supporting platforms. However, this new paradigm, while allowing for enhanced flexibility and convenience, may also open the door to new kinds of attacks based on forging or impersonating attributes, thus potentially allowing for attackers to gain unintended access to protected resources. In order to alleviate this problem, we present an ongoing effort based on moving target defense, an emerging technique for proactively providing security measurements.
In our approach, we aim to analyze attribute-based data obtained at runtime in order to dynamically change policy configurations over time. We present our approach by leveraging a case study based in electronic health records, another trending methodology widely used in practice for mediating access to sensitive healthcare information in mission-critical applications.
|
Year | DOI | Venue |
|---|---|---|
2016 | 10.1145/2875491.2875499 | ABAC@CODASPY |
Keywords | DocType | ISBN |
Attribute-based Access Control,Moving Target Defense,Electronic Health Records,Policy Mutation | Conference | 978-1-4503-4079-3 |
Citations | PageRank | References |
0 | 0.34 | 3 |
Authors | ||
6 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Carlos E. Rubio-Medrano | 1 | 18 | 5.78 |
| Josephine Lamp | 2 | 0 | 1.69 |
| Marthony Taguinod | 3 | 67 | 4.27 |
| Adam Doupé | 4 | 357 | 33.14 |
| Ziming Zhao | 5 | 322 | 30.52 |
| Gail-Joon Ahn | 6 | 3012 | 203.39 |