Paper Info
Title
Cryptographic Framework for Role Control Remedy: A Secure Role Engineering mechanism for Single Authority Organizations
Abstract
Role Engineering creates a model for enforcing security among organizations and reduces the risk of entities having unauthorized access privileges. In this paper, we realize the role engineering for the organizations where services are associated with the roles. Access to such services depends on the verification and validation of the role and role ownership. In face to face communication, verification and validation of roles and role ownership are possible through physical certificates but in a computer network, it is spacious. In some cases, it relies on the knowledge-based security systems creating a problem of confidentiality. This research proposed an unconventional Cryptographic Role Engineering (CRE) framework to ensure the privacy and role ownership issues of the entities, secure role management for the role assigning organizations and role validation and verification for the service providing organizations. Validation of the framework is performed through the case study/example scenario and feature analysis. Based on validation and achieved features, it is concluded that the proposed framework achieved the feature of a strong connection between easy administration and strong security. As a result, the role assigning organizations can have a secure role management mechanism, the role owner can provide the proof of role ownership independently and service-providing organizations can verify and validate the role without the intervention of role assigning organizations.
Year
DOI
Venue
2021
10.1016/j.future.2020.10.021
Future Generation Computer Systems
Keywords
DocType
Volume
Cryptography,Digital signature,Hash,Hash pointer,Role-Based Access Control,Role engineering
Journal
117
ISSN
Citations 
PageRank 
0167-739X
0
0.34
References 
Authors
0
3
Name
Order
Citations
PageRank
Aqsa Rashid121.37
Asif Masood213712.91
Haider Abbas339143.88