Your search keyword '"Authorization"' showing total 11,378 results

1. Guide to Attribute Based Access Control (ABAC) definition and considerations

Author

Hu, V. C.

Subjects

Access control, Access control mechanism, Access control model, Access control policy, Attribute based access control (ABAC), Authorization, Privilege

Abstract

Abstract: This document provides Federal agencies with a definition of attribute based access control (ABAC). ABAC is a logical access control methodology where authorization to perform a set of operations is determined by evaluating attributes associated with the subject, object, requested operations, and, in some cases, environment conditions against policy, rules, or relationships that describe the allowable operations for a given set of attributes. This document also provides considerations for using ABAC to improve information sharing within organizations and between organizations while maintaining control of that information.

Published

2014

2. An i-Voting Pilot in the eIDAS and SDG Context

Author

Cucurull, Jordi, Toropova, Polina, Corici, Andreea-Ancuta, Prünster, Bernd, Zefferer, Thomas, Podgorelec, Blaž, Homburg, Vincent, editor, Lampoltshammer, Thomas J., editor, and Solvak, Mihkel, editor

Published

2025

3. Discovering and Understanding the Security Flaws of Authentication and Authorization in IoT Cloud APIs for Smart Home

Author

Guo, Minglei, Xiao, Zhenghang, Liu, Xin, Zhuge, Jianwei, Akan, Ozgur, Editorial Board Member, Bellavista, Paolo, Editorial Board Member, Cao, Jiannong, Editorial Board Member, Coulson, Geoffrey, Editorial Board Member, Dressler, Falko, Editorial Board Member, Ferrari, Domenico, Editorial Board Member, Gerla, Mario, Editorial Board Member, Kobayashi, Hisashi, Editorial Board Member, Palazzo, Sergio, Editorial Board Member, Sahni, Sartaj, Editorial Board Member, Shen, Xuemin, Editorial Board Member, Stan, Mircea, Editorial Board Member, Jia, Xiaohua, Editorial Board Member, Zomaya, Albert Y., Editorial Board Member, Duan, Haixin, editor, Debbabi, Mourad, editor, de Carné de Carnavalet, Xavier, editor, Luo, Xiapu, editor, Du, Xiaojiang, editor, and Au, Man Ho Allen, editor

Published

2025

4. Hierarchical password capabilities.

Author

Lopriore, Lanfranco

Subjects

*SINGLE parents, *ACCESS control, *GENERALIZATION, *REVOCATION

Abstract

We present a paradigm for access control to typed objects logically connected to form a hierarchy, whereby each object has a single parent, and may have children. Protection domains are divided into three classes. A vertical domain includes authorizations for the objects in a subhierarchy. A horizontal domain includes authorizations for the children of a given object. A simple domain includes an authorization for a single object. We introduce the hierarchical capability concept as a generalization of the classical password capability concept. A hierarchical capability references an entire domain instead of a single object. [ABSTRACT FROM AUTHOR]

Published

2024

5. Authority and Evaluation as Strategies of Legitimization in Trump's Public Speeches.

Author

Raheem, Sadiq Abdulameer and Obied, Azhar Hussain

Subjects

GLOBAL Financial Crisis, 2008-2009, STATISTICAL correlation, VALUE (Economics), DATA analysis, POLITICAL doctrines

Abstract

Copyright of Adab Al-Kufa is the property of Republic of Iraq Ministry of Higher Education & Scientific Research (MOHESR) and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

6. Telemedicine in Italy: Healthcare authorization profiles in the modern medico-legal reading.

Author

Bolcato, Vittorio, Basile, Giuseppe, Bianco Prevot, Luca, Fassina, Giovanni, Rapuano, Silvia, Brizioli, Enrico, and Tronconi, Livio P.

Subjects

*MEDICAL personnel, *CRIMINAL courts, *HEALTH facilities, *REGULATORY compliance, *TELEMEDICINE

Abstract

The ruling n. 38485, 20 June 2019, of the Italian Supreme Court, III criminal section, addressed by the perspective of the law the very sensitive and new issue of telemedicine.This commentary deals with the issue of authorization of telemedicine activities by the health authority, starting from the Italian Court of Criminal Cassation, III section, decision n. 38485/2019. The case law explored the authorization of a health point, which carries out telemedicine services.Starting from the perspective discussed by Italian health regulations, the paper examines how the health act could be defined, with the possibilities offered by telecommunications, and how it now relates legally to the physical place where it takes place.Even if telemedicine opens the way to virtual spaces of health practice, the Ministry of Health Italian Guidelines pose functional and logistical issues to guarantee users’ safety and health care system accountability. Then, functional requirements for health legitimate practice, and their continuous monitoring, together with the responsibilities of the service centers, health professionals and health facilities, are discussed.The questioning of States’ health law, in a broad health system such as that of the Europe, characterized by autonomous health regulations, is extremely important for cross-border health policy with telemedicine, as overall regulatory compliance in health care is the ground criterion for risk prevention and patient safety, to be properly verified. [ABSTRACT FROM AUTHOR]

Published

2024

7. Cloud-Based Access Control Including Time and Location.

Author

Al Lail, Mustafa, Moncivais, Marshal, Benton, Robert, and Perez, Alfredo J.

Subjects

ACCESS control, MODERN architecture, LOCATION-based services, MOBILE apps, CLOUD computing

Abstract

Location-based services (LBS) offer various functionalities, but ensuring secure access to sensitive user data remains a challenge. Traditional access control methods often need more detail to enforce location-specific restrictions. This paper proposes a new approach that utilizes the Generalized Spatio-Temporal Role-Based Access Control Model (GSTRBAC) within the context of LBS. GSTRBAC grants access based on user credentials, authorized locations, and access times, providing a detailed approach to securing LBS data. We introduce an optimized cloud-based GSTRBAC implementation suitable for deployment in modern LBS architectures. The system uses two secure communication protocols tailored to different security requirements. This allows for efficient communication for less-sensitive data while offering robust protection for highly sensitive information. Additionally, a proof-of-concept mobile application demonstrates the system's functionality and efficiency within an LBS environment. Our evaluation confirms the effectiveness of the cloud-based GSTRBAC implementation in enforcing location-specific access control while maintaining resource and time efficiency. [ABSTRACT FROM AUTHOR]

Published

2024

8. TAŞINMAZ SATIŞ SÖZLEŞMELERİNİN NOTERLERDE DÜZENLENMESİ.

Author

BİLEN, Elif

Abstract

Copyright of Akdeniz Üniversitesi Hukuk Fakültesi Dergisi is the property of Akdeniz Universitesi Hukuk Fakultesi Dergisi and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

9. The access control double bind: How everyday interfaces regulate access and privacy, enable surveillance, and enforce identity.

Author

Gardner, Daniel L and Tanenbaum, Theresa J

Subjects

ACCESS control, VIDEO game consoles, DIGITAL technology, LICENSE agreements, SYSTEMS software

Abstract

Access controls are an inescapable and deceptively mundane requirement for accessing digital applications and platforms. These systems enable and enforce practices related to access, ownership, privacy, and surveillance. Companies use access controls to dictate and enforce terms of use for digital media, platforms, and technologies. The technical implementation of these systems is well understood. However, this paper instead uses digital game software and platforms as a case study to analyze the broader socio-technical, and often inequitable, interactions these elements regulate across software systems. Our sample includes 200 digital games and seven major digital gaming platforms. We combine close reading and content analysis to examine the processes of authentication and authorization within our samples. While the ubiquity of these systems is a given in much academic and popular discourse, our data help empirically ground this understanding and examine how these systems support user legibility and surveillance, and police identities in under-examined ways. We suggest changes to the policies and practices that shape these systems to drive more transparent and equitable design. [ABSTRACT FROM AUTHOR]

Published

2024

10. THE PROPORTIONALITY OF RESTRICTING FUNDAMENTAL RIGHTS AND FREEDOMS TO THE PERFORMANCE OF SOME EVIDENTIARY PROCEEDINGS.

Author

VIZDOAGĂ, Domnița

Subjects

CIVIL rights, INTELLECTUAL freedom, HUMAN rights

Abstract

All countries in the world are currently witnessing a dramatic increase of organized criminality, the consolidation of national criminal structures and, what is worse, their international merger for criminal syndicates. In such circumstances, the use of state institutions to deal with the increasing force and spreading of crime in the world becomes inevitable. Under these conditions, the respect for the human being, the respect for his or her dignity and value, freedom of thought and action, and other fundamental rights and freedoms - all these are the general premise for the achievement of the goals of a contemporary world society and the foundation of the universal progressive development of any state, because the free person, as the axiom of development, can offer something more to society than the suppressed one. The last argument is what makes the idea of the freedom of the individual and the primacy of human rights relevant, including in the context of evidence proceedings in criminal trials. Each time when criminal proceedings are authorized, the limits on the rights of both the subjects of the proceedings and other persons will be considered and decided. In this context, the principle of proportionality is of major and undeniable relevance. [ABSTRACT FROM AUTHOR]

Published

2024

11. Handling Complexity in Decentralized Research Networks: The Data Sharing Framework Allowlist Management Application.

Author

SCHWEIZER, Simon T., HUND, Hauke, KURSCHEIDT, Maximilian, ZILSKE, Christoph, BÖHRINGER, Jan P., and FEGELER, Christian

Abstract

Introduction With the establishment of the Data Sharing Framework (DSF) as a distributed business process engine in German research networks, it is becoming increasingly important to coordinate authentication, authorization, and role information between peer-to-peer network components. This information is provided in the form of an allowlist. This paper presents a concept and implementation of an Allowlist Management Application. State of the Art In research networks using the DSF, allowlists were initially generated manually. Concept The Allowlist Management Application provides comprehensive tool support for the participating organizations and the administrators of the Allowlist Management Application. It automates the process of creating and distributing allowlists and additionally reduces errors associated with manual entries. In addition, security is improved through extensive validation of entries and enforcing review of requested changes by implementing a four-eyes principle. Implementation Our implementation serves as a preliminary development for the complete automation of onboarding and allowlist management processes using established frontend and backend frameworks. The application has been deployed in the Medical Informatics Initiative and the Network University Medicine with over 40 participating organizations. Lessons learned We learned the need for user guidance, unstructured communication in a structured tool, generalizability, and checks to ensure that the tool's outputs have actually been applied. [ABSTRACT FROM AUTHOR]

Published

2024

12. Michel Foucault and Theorizations of Inequality

Author

Bultmann, Daniel, Hofner, Lara, Section editor, Jodhka, Surinder S., editor, and Rehbein, Boike, editor

Published

2024

13. Authentication and Authorization Frameworks for IoT

Author

García Carrillo, Dan, Pérez, Salvador, Inglés, Eduardo, Papadopoulos, Georgios Z., Montavont, Nicolas, Skarmeta, Antonio, Finlay, James, Managing Editor, Ziegler, Sébastien, editor, Radócz, Renáta, editor, Quesada Rodriguez, Adrian, editor, and Matheu Garcia, Sara Nieves, editor

Published

2024

14. USB Fort Knox: Building a Robust Defense Against Data Breaches

Author

Hingmire, Anil, Sawant, Aditi, Patil, Divya, Khuman, Dimple, Jadhav, Sunayana, Lohar, Sanjay, Rocha, Álvaro, Series Editor, Hameurlain, Abdelkader, Editorial Board Member, Idri, Ali, Editorial Board Member, Vaseashta, Ashok, Editorial Board Member, Dubey, Ashwani Kumar, Editorial Board Member, Montenegro, Carlos, Editorial Board Member, Laporte, Claude, Editorial Board Member, Moreira, Fernando, Editorial Board Member, Peñalvo, Francisco, Editorial Board Member, Dzemyda, Gintautas, Editorial Board Member, Mejia-Miranda, Jezreel, Editorial Board Member, Hall, Jon, Editorial Board Member, Piattini, Mário, Editorial Board Member, Holanda, Maristela, Editorial Board Member, Tang, Mincong, Editorial Board Member, Ivanovíc, Mirjana, Editorial Board Member, Muñoz, Mirna, Editorial Board Member, Kanth, Rajeev, Editorial Board Member, Anwar, Sajid, Editorial Board Member, Herawan, Tutut, Editorial Board Member, Colla, Valentina, Editorial Board Member, Devedzic, Vladan, Editorial Board Member, Ragavendiran, S. D. Prabu, editor, Pavaloaia, Vasile Daniel, editor, Mekala, M. S., editor, and Cabezuelo, Antonio Sarasa, editor

Published

2024

15. Authorization Model for Microservice-Based ERP Software

Author

Vu, Thi-Huong-Giang, Trinh, Tuan-Dat, Tran, Trung-Hieu, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Nguyen, Thi Dieu Linh, editor, Dawson, Maurice, editor, Ngoc, Le Anh, editor, and Lam, Kwok Yan, editor

Published

2024

16. Automatic Directory Service Integration in Distributed Firewall Resources: A Study of Scripting and LDAP Integration with pfSense

Author

Tudosi, Andrei-Daniel, Graur, Adrian, Balan, Doru Gabriel, Potorac, Alin Dan, Magjarević, Ratko, Series Editor, Ładyżyński, Piotr, Associate Editor, Ibrahim, Fatimah, Associate Editor, Lackovic, Igor, Associate Editor, Rock, Emilio Sacristan, Associate Editor, Costin, Hariton-Nicolae, editor, and Petroiu, Gladiola Gabriela, editor

Published

2024

17. Facial Recognition Reinvented: Deep Learning Based Security Alert System

Author

Reddy, T. Sridhar, Sujatha, B., Kumar, V. G. V. Prasanna, Srihari, P., Harshitha, M. Devi, Manohar, B. Murali, Fournier-Viger, Philippe, Series Editor, Madhavi, K. Reddy, editor, Subba Rao, P., editor, Avanija, J., editor, Manikyamba, I. Lakshmi, editor, and Unhelkar, Bhuvan, editor

Published

2024

18. Control

Author

Rainbolt, George W. and Rainbolt, George W.

Published

2024

19. AuthApp – Portable, Reusable Solid App for GDPR-Compliant Access Granting

Author

Both, Andreas, Kastner, Thorsten, Yeboah, Dustin, Braun, Christoph, Schraudner, Daniel, Schmid, Sebastian, Käfer, Tobias, Harth, Andreas, Hartmanis, Juris, Founding Editor, van Leeuwen, Jan, Series Editor, Hutchison, David, Editorial Board Member, Kanade, Takeo, Editorial Board Member, Kittler, Josef, Editorial Board Member, Kleinberg, Jon M., Editorial Board Member, Kobsa, Alfred, Series Editor, Mattern, Friedemann, Editorial Board Member, Mitchell, John C., Editorial Board Member, Naor, Moni, Editorial Board Member, Nierstrasz, Oscar, Series Editor, Pandu Rangan, C., Editorial Board Member, Sudan, Madhu, Series Editor, Terzopoulos, Demetri, Editorial Board Member, Tygar, Doug, Editorial Board Member, Weikum, Gerhard, Series Editor, Vardi, Moshe Y, Series Editor, Goos, Gerhard, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Stefanidis, Kostas, editor, Systä, Kari, editor, Matera, Maristella, editor, Heil, Sebastian, editor, Kondylakis, Haridimos, editor, and Quintarelli, Elisa, editor

Published

2024

20. An Innovative Solution for Efficient Workflow Management in Healthcare

Author

Luschi, Alessio, Iadanza, Ernesto, Magjarević, Ratko, Series Editor, Ładyżyński, Piotr, Associate Editor, Ibrahim, Fatimah, Associate Editor, Lackovic, Igor, Associate Editor, Rock, Emilio Sacristan, Associate Editor, Jarm, Tomaž, editor, Šmerc, Rok, editor, and Mahnič-Kalamiza, Samo, editor

Published

2024

21. An Efficient CH Based Authentication and Authorization for Secure EHR Using DF-BCrypt and Hashed Access Structure

Author

Prathima, S., Durga, R., Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Rajagopal, Sridaran, editor, Popat, Kalpesh, editor, Meva, Divyakant, editor, and Bajeja, Sunil, editor

Published

2024

22. Privacy-Preserving Cross-Domain Authentication in Internet of Things

Author

Huang, Cheng, Shen, Xuemin (Sherman), Shen, Xuemin Sherman, Series Editor, Huang, Cheng, and Shen, Xuemin (Sherman)

Published

2024

23. Interactive Learning for Patient Care: Blockchain Ingrained Electronic Health Record Management System with Patient Control, Data Quality and Security Assurance

Author

Sharma, Arvind K., Habib, Gousia, Wadhawan, Savita, Soni, Himani, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Roy, Nihar Ranjan, editor, Tanwar, Sudeep, editor, and Batra, Usha, editor

Published

2024

24. Authentication, Authorization, Administration and Audit Impact on Digital Security

Author

Navarro, Fauricio Alban Conejo, García, Melvin, Jadán-Guerrero, Janio, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Rocha, Alvaro, editor, Adeli, Hojjat, editor, Dzemyda, Gintautas, editor, Moreira, Fernando, editor, and Colla, Valentina, editor

Published

2024

25. A Survey on Security in Data Transmission in IoT: Layered Architecture

Author

Ba, Mandicou, Dionlar, Lang, Haggar, Bachar Salim, DIOP, Idy, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Ye, Kejiang, editor, and Zhang, Liang-Jie, editor

Published

2024

26. An efficient framework for authentication and blockchain authorization of secured healthcare information using hpcsg- rotdf-slorb and dhsk-decc.

Author

Jani, Y. and Raajan, P.

Subjects

ELLIPTIC curve cryptography, BLOCKCHAINS, INFORMATION technology, DATA security, OSCILLATIONS

Abstract

In the present scenario, Information technology has emerged rapidly in various sectors. But, it has various barriers in securing the information during the process, storage, transmission, and retrieval. Past few decades, it has entered the doors of the medical field. Recently, the confidential information of the health care system oscillates with security and privacy. It is significant to secure the patients' data, which is engendered by several healthcare systems. For researchers, those data are of great value; in addition, could help in understanding phenomena and conquering particular challenges. Since this information refers to the patient's personal data, it must be treated as confidential. An adverse effect might be caused by the unauthorized disclosure of patients' personal information. Hence, by employing Hospital id Patient id Central or State Govt. id – ROT Digit Folding Shift Left OR – BLAKE (HPCSG- ROTDF-SLORB) and Diffie Hellman Secret Key – Double Elliptic Curve Cryptography (DHSK-DECC), an efficient Cipher Hashing-based user authentication and Secure Data Transfer along with Block Chain-based (BC) User Verification are proposed for surpassing those issues. For generating strong credentials for authentication, the HPCSG-ROTDF is wielded. For converting the cipher text into hash code, SLOR-BLAKE is deployed. By employing DHSK-DECC, the data is encrypted and decrypted for enhancing data security. Regarding several metrics, the performances of the proposed system were analyzed. As per the outcomes, the proposed system exhibited enhanced performance when analogized to the prevailing methodologies. [ABSTRACT FROM AUTHOR]

Published

2024

27. Canadians' use of cannabis for therapeutic purposes since legalization of recreational cannabis: a cross-sectional analysis by medical authorization status.

Author

Balneaves, Lynda G., Brown, Ashleigh, Green, Matthew, Prosk, Erin, Rapin, Lucile, Monahan-Ellison, Max, McMillan, Eva, Zaid, Jonathan, Dworkind, Michael, and Watling, Cody Z.

Subjects

*MEDICAL marijuana, *CROSS-sectional method, *LEGALIZATION, *SMALL cities, *MEDICAL personnel

Abstract

Background: There has been a precipitous decline in authorizations for medical cannabis since non-medical cannabis was legalized in Canada in 2018. This study examines the demographic and health- and medical cannabis-related factors associated with authorization as well as the differences in medical cannabis use, side effects, and sources of medical cannabis and information by authorization status. Methods: Individuals who were taking cannabis for therapeutic purposes completed an online survey in early 2022. Multivariable logistic regression was used to determine odds ratios (OR) and 95% confidence intervals (CI) of demographic and health- and medical cannabis-related variables associated with holding medical cannabis authorization. The differences in medical cannabis use, side effects, and sources of information by authorization status were determined via t-tests and chi-squared analysis. Results: A total of 5433 individuals who were currently taking cannabis for therapeutic purposes completed the study, of which 2941 (54.1%) currently held medical authorization. Individuals with authorization were more likely to be older (OR ≥ 70 years vs. < 30 years, 4.85 (95% CI, 3.49–6.76)), identify as a man (OR man vs. woman, 1.53 (1.34–1.74)), have a higher income (OR > $100,000/year vs. < $50,000 year, 1.55 (1.30–1.84)), and less likely to live in a small town (OR small town/rural vs. large city, 0.69 (0.59–0.81)). They were significantly more likely to report not experiencing any side effects (29.9% vs. 23.4%; p < 0.001), knowing the amount of cannabis they were taking (32.1% vs. 17.7%; p < 0.001), obtaining cannabis from regulated sources (74.1% vs. 47.5%; p < 0.001), and seeking information about medical cannabis from healthcare professionals (67.8% vs. 48.2%; p < 0.01) than individuals without authorization. Conclusions: These findings offer insight into the possible issues regarding equitable access to medical cannabis and how authorization may support and influence individuals in a jurisdiction where recreational cannabis is legalized, highlighting the value of a formal medical cannabis authorization process. [ABSTRACT FROM AUTHOR]

Published

2024

28. Secure Data Aggregation Using Authentication and Authorization for Privacy Preservation in Wireless Sensor Networks.

Author

Erskine, Samuel Kofi

Subjects

*WIRELESS sensor networks, *TIME complexity, *BIOMETRIC identification, *NETWORK performance, *ENERGY consumption, *COMPUTER network security

Abstract

Existing secure data aggregation protocols are weaker to eliminate data redundancy and protect wireless sensor networks (WSNs). Only some existing approaches have solved this singular issue when aggregating data. However, there is a need for a multi-featured protocol to handle the multiple problems of data aggregation, such as energy efficiency, authentication, authorization, and maintaining the security of the network. Looking at the significant demand for multi-featured data aggregation protocol, we propose secure data aggregation using authentication and authorization (SDAAA) protocol to detect malicious attacks, particularly cyberattacks such as sybil and sinkhole, to extend network performance. These attacks are more complex to address through existing cryptographic protocols. The proposed SDAAA protocol comprises a node authorization algorithm that permits legitimate nodes to communicate within the network. This SDAAA protocol's methods help improve the quality of service (QoS) parameters. Furthermore, we introduce a mathematical model to improve accuracy, energy efficiency, data freshness, authorization, and authentication. Finally, our protocol is tested in an intelligent healthcare WSN patient-monitoring application scenario and verified using an OMNET++ simulator. Based upon the results, we confirm that our proposed SDAAA protocol attains a throughput of 444 kbs, representing a 98% of data/network channel capacity rate; an energy consumption of 2.6 joules, representing 99% network energy efficiency; an effected network of 2.45, representing 99.5% achieved overall performance of the network; and time complexity of 0.08 s, representing 98.5% efficiency of the proposed SDAAA approach. By contrast, contending protocols such as SD, EEHA, HAS, IIF, and RHC have throughput ranges between 415–443, representing 85–90% of the data rate/channel capacity of the network; energy consumption in the range of 3.0–3.6 joules, representing 88–95% energy efficiency of the network; effected network range of 2.98, representing 72–89% improved overall performance of the network; and time complexity in the range of 0.20 s, representing 72–89% efficiency of the proposed SDAAA approach. Therefore, our proposed SDAAA protocol outperforms other known approaches, such as SD, EEHA, HAS, IIF, and RHC, designed for secure data aggregation in a similar environment. [ABSTRACT FROM AUTHOR]

Published

2024

29. Monopolul de stat în industria jocurilor de noroc și tratamentul egal între operatorii privați și cei deținuți de stat.

Author

SOARE, Vlad-Cristian

Subjects

GAMBLING, MONOPOLIES, EXCEPTIONS (Law), GAMBLING industry, EUROPEAN Union law

Abstract

This study aims to an analysis of the gambling system in Romania, with an emphasis on the thesis stated in its title, namely the state monopoly in the gambling industry by referring to the equal treatment between private operators and those owned by the state. The principle of equality complemented by that of non-discrimination runs like a red thread thrO.U.G.h contemporary constitutional systems and international documents in the field of human rights and fundamental freedoms. Also, in this area it must be respected, and it must be reflected in the legislation applicable to gambling. However, state monopoly allows states to justify certain exceptions to EU law. As we have shown in the conclusions part, in Romania it is an exclusive exploitation monopoly for lottery games, established in favor of the Romanian National Lottery, but for the rest of the gambling games, any operator, private or state, can exploit them, provided if they obtain license and authorization. Indirectly and in the absence of an express normative framework, we could not state that the Romanian Lottery implicitly holds a monopoly for the exploitation of VLT-type slot machines-video lottery games-, even thO.U.G.h it is the only one that exploits them. Moreover, the VLTs are not subject to the exclusive exploitation monopoly provided to the Romanian Lottery. The analysis of the legislation leads to the conclusion that there is a concern to achieve a fair balance between the public interest and that of the operators authorized to perform this activity. [ABSTRACT FROM AUTHOR]

Published

2024

30. LAS SOCIEDADES POR ACCIONES SIMPLIFICADAS. NECESIDAD DE SU REGULACIÓN EN EL DERECHO SOCIETARIO CUBANO.

Author

Antúnez SÁNCHEZ, Alcides and Díaz OCAMPO, Eduardo

Subjects

BUSINESSPEOPLE, COMMERCIAL law, PUBLIC companies, LEGAL norms, CORPORATION law, PAYROLL deductions, GOVERNMENT ownership

Abstract

Cuban Corporate Law has its antecedents before 1959 in objective law; With the triumph of the Revolution, it is forgotten to make use of the Commercial Code of 188, the stage of nationalization overshadowed the private sector with nationalization. The recognition of private actors is resumed at the end of the 20th century, it occurs in its last decade, with the reopening of the small entrepreneur (TCP) and the corporate form of the Public Limited Company before the debacle of the socialist camp and the CAME. In the 21st century, private property is recognized in the 2019 constitutional text, with the associative form of the SRL, by promoting MSMEs in communion with private companies. Objective: an analysis of the private entrepreneur and the Simplified Stock Company is carried out in the doctrine and regulations of Corporate Law, the need to be introduced into the Cuban corporate legal system, as a new economic actor, by promoting MSMEs for the execution of activities jointly with the public company. Materials and methods: the analysis, synthesis of materials of Commercial Law were used to break down the information, the logical history of the stages of Corporate Law of the SAS, induction deduction to deduce and arrive at elements of value judgments from the general to the particular, the legal exegetical, the bibliographic review of materials on MSMEs, and the legal comparison of legal norms on the constitutive process of the commercial company of this new corporate type. Results: recognize simplified stock companies within the corporate legal system, in order to expedite the procedures of entrepreneurs before the Ministry of Economy and planning, how to update the legal regulations related to Commercial Law in Cuba. [ABSTRACT FROM AUTHOR]

Published

2024

31. Reclamation and Authorization: Cepollaro and Lopez de Sa on in-group Restriction.

Author

Valtonen, Pasi

Subjects

DISCRIMINATORY language, OUTGROUPS (Social groups), INGROUPS (Social groups), RESTRICTIONS

Abstract

It is generally thought that the reclamation of slurs is restricted to the in-group. Bianca Cepollaro and Dan Lopez de Sa challenge this assumption by presenting cases in which slurs are successfully reclaimed by members of out-groups. I agree with the idea that the out-groups often participate in reclamation. In this paper, I present a view which accommodates the fact that sometimes out-groups successfully reclaim slurs. At the same time, the view preserves the central role of the in-group in reclamation. [ABSTRACT FROM AUTHOR]

Published

2024

32. Blockchain Solutions for Authorization and Authentication.

Author

Bouafia, Khawla and Gulalov, Mahammad

Subjects

BLOCKCHAINS, BANK accounts, FRAUD, BITCOIN, BANKING industry

Abstract

Recently, most people have been looking for smart services that allow them to do their daily services directly without having to visit local businesses and providers [ 1 ]. As observed in recent times, citizens can now apply to open their own commercial file or obtain a passport without having to visit the country's economic institution or the Immigration and Passports headquarters. Additionally, applying or opening accounts in virtual banks also added a lot of services and facilities for users and transactions between countries that can be rapidly provisioned with minimal effort [ 2 ]. All these transactions require the user's authentication and identity verification to avoid any personal fraud and save the user's rights Blockchain technology stands out as one of the most secure technologies available enabling secure transactions without the need for a central authority. Starting in 2009 1, with Bitcoin leveraging blockchain technology, there has been an increasing number of blockchain technology-based solutions. The significance of this work compared to its predecessors is that it uses an existing product and technology to prove the solutions offered by Blockchain and find a solution for authorization and authentication. [ABSTRACT FROM AUTHOR]

Published

2024

33. 基于双层链的个人隐私数据保护和授权框架.

Author

刘靖宇, 曹兴旺, 颜钰莹, 范小芹, and 武优西

Abstract

Copyright of Journal of Zhengzhou University (Natural Science Edition) is the property of Journal of Zhengzhou University (Natural Science Edition) Editorial Office and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2024

34. Outsourcing or Authorizing? Optimal Options for Third-Party Remanufacturing Modes with Green Consumerism.

Author

Wu, Juncheng, Zhang, Lei, and Shen, Xuan

Abstract

In recent decades, more and more consumers are becoming concerned about the environment and increasingly tend to buy remanufactured products. However, despite the emergence of green consumerism, many original equipment manufacturers (OEMs) are unlikely to engage in remanufacturing themselves and instead prefer to contract it to third-party remanufacturers (TPRs). Although the literature has recently highlighted the difference between outsourcing and authorizing remanufacturing, it does not explore how green consumerism impacts the choice between these two remanufacturing modes. To fill this gap, in this study, we develop two theoretical models according to which the OEM can outsource or authorize its remanufacturing operations to a TPR to satisfy green consumers who prefer remanufactured products. By comparing optimal outcomes, such as quantities, profit, and environmental factors, our analysis shows that a substantial proportion of environmentally conscious consumers prefer the strategy of remanufacturing outsourcing, which provides a win–win–win strategy for the OEM, the TPR, and the environment; otherwise, the OEM chooses to authorize remanufacturing, which negatively affects the TPR and the environment. As such, we suggest that governments try to increase the proportion of the population that favors green consumerism or implement measures that encourage OEMs to adopt remanufacturing outsourcing. [ABSTRACT FROM AUTHOR]

Published

2024

35. Dataset for authentication and authorization using physical layer properties in indoor environment

Author

Kazi Istiaque Ahmed, Mohammad Tahir, Sian Lun Lau, Mohamed Hadi Habaebi, Abdul Ahad, and Ivan Miguel Pires

Subjects

RSSI, LQI, Authentication, Authorization, Physical layer, Machine learning, Computer applications to medicine. Medical informatics, R858-859.7, Science (General), Q1-390

Abstract

The proliferation landscape of the Internet of Things (IoT) has accentuated the critical role of Authentication and Authorization (AA) mechanisms in securing interconnected devices. There is a lack of relevant datasets that can aid in building appropriate machine learning enabled security solutions focusing on authentication and authorization using physical layer characteristics. In this context, our research presents a novel dataset derived from real-world scenarios, utilizing Zigbee Zolertia Z1 nodes to capture physical layer properties in indoor environments. The dataset encompasses crucial parameters such as Received Signal Strength Indicator (RSSI), Link Quality Indicator (LQI), Device Internal Temperature, Device Battery Level, and more, providing a comprehensive foundation for advancing Machine learning enabled AA in IoT ecosystems.

Published

2024

36. Enhanced mechanism to prioritize the cloud data privacy factors using AHP and TOPSIS: a hybrid approach

Author

Mohammad Zunnun Khan, Mohd Shoaib, Mohd Shahid Husain, Khair Ul Nisa, and Mohammad. Tabrez Quasim

Subjects

Analytical Hieratical Process (AHP), Technique for Order Preference by Similarity to the Ideal Solution (TOPSIS), Cloud data privacy, Access control, Authorization, Authentication, Computer engineering. Computer hardware, TK7885-7895, Electronic computers. Computer science, QA75.5-76.95

Abstract

Abstract Cloud computing is a new paradigm in this new cyber era. Nowadays, most organizations are showing more reliability in this environment. The increasing reliability of the Cloud also makes it vulnerable. As vulnerability increases, there will be a greater need for privacy in terms of data, and utilizing secure services is highly recommended. So, data on the Cloud must have some privacy mechanisms to ensure personal and organizational privacy. So, for this, we must have an authentic way to increase the trust and reliability of the organization and individuals The authors have tried to create a way to rank things that uses the Analytical Hieratical Process (AHP) and the Technique for Order Preference by Similarity to the Ideal Solution (TOPSIS). Based on the result and comparison, produce some hidden advantages named cost, benefit, risk and opportunity-based outcomes of the result. In this paper, we are developing a cloud data privacy model; for this, we have done an intensive literature review by including Privacy factors such as Access Control, Authentication, Authorization, Trustworthiness, Confidentiality, Integrity, and Availability. Based on that review, we have chosen a few parameters that affect cloud data privacy in all the phases of the data life cycle. Most of the already available methods must be revised per the industry’s current trends. Here, we will use Analytical Hieratical Process and Technique for Order Preference by Similarity to the Ideal Solution method to prove that our claim is better than other cloud data privacy models. In this paper, the author has selected the weights of the individual cloud data privacy criteria and further calculated the rank of individual data privacy criteria using the AHP method and subsequently utilized the final weights as input of the TOPSIS method to rank the cloud data privacy criteria.

Published

2024

37. FPRESSO: Fast and Privacy-Preserving SSO Authentication With Dynamic Load Balancing for Multi-Cloud-Based Web Applications

Author

Somchart Fugkeaw, Sorravich Rattagool, Pawat Jiangthiranan, and Peerawichaya Pholwiset

Subjects

Single sign-on, authentication, authorization, privacy-preserving, access control, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Existing cloud-based Single Sign-on (SSO) model generally rely on token-based and secure API leveraging authentication standard models such as OAuth 2.0, FIDO 2, OpenID Connect. Even though these models enable secure and fast login experiences across websites and applications, most of them did not focus on the privacy of the SSO token generated for the authentication with many applications. In addition, they are incapable to support dynamic authorization binding of the multiple privileges of user in accessing multiple applications in the SSO token. In this paper, we propose a scheme called FPRESSO providing a fast and privacy-preserving SSO authentication system with anonymous authorization binding designed for multi-application environments hosted on cloud. We utilize random perturbation to safeguard the SSO token, which is structured as a JSON Web Token (JWT). Essentially, our approach stores tokens in cookies to efficiently manage access and facilitate SSO recovery. Additionally, we introduced the anonymous authorization binding protocol to bundle user roles and permissions of the user into the SSO token, enhancing the efficiency and agility of access control across applications. To deliver high scalability of the system in accommodating a large number of users in cloud environment, we introduced multi-threaded load balancing algorithm to dynamically handle both SSO token generation and verification requests, ensuring efficient distribution of load across multiple servers. We conducted experiments to assess the performance of our proposed system. The results show that the token generation and verification processes are more efficient than those in comparable studies. By implementing the new cookie strategy, latency decreased significantly compared to the method without cookies.

Published

2024

38. SAAC: Secure Access Control Management Framework for Multi-User Smart Home Systems

Author

Iram Fatima Hashmi, Zafar Iqbal, Eman Munir, Natalia Kryvinska, Iryna Ivanochko, and Gabriel Avelino Sampedro

Subjects

Smart home, access control, authorization, multi-user, attribute-based access control, role-based access control, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

In a smart home environment, multiple users can access a single smart device simultaneously. Moreover, these multiple users may have conflicting demands at a time; that is, one user’s demands differ from another for the same device based on the role of users and environmental factors. Therefore, existing single-user access control systems cannot handle such conflicting and dynamically changing demands, considering both roles and environmental factors in the multi-user smart home environment. Considering this issue, we proposed a Smart Access Control and Authorization framework (SAAC). It is a multi-user access control solution that has four modules, namely, a user interaction module, a backend server module, a policy manager module, and a policy execution module. The user interaction module collects user data and resource policies, which are processed by the backend server and forwarded to the policy manager. The policy manager resolves conflicts and generates final policies, which are stored in the backend server for enforcement by the policy execution module. The finalized policies are shared with the backend server module and saved there till needed for execution by the policy execution module to enforce the access control decision. We have implemented a proof of concept of the proposed framework on VS Code using the Casbin library. The performance evaluation results show our framework’s effectiveness and efficiency with lower computational complexity requirements than existing methods. Finally, we performed a security analysis of the proposed model based on the STRIDE model that confirms its robustness against access control attacks.

Published

2024

39. Ephemeral Secret Leakage-Free ID-Role-Based Access Control Authentication and Key Exchange Protocol for Securing Electric Vehicle Data

Author

Amang Sudarsono, Rahardhita Widyatra Sudibyo, Idris Winarno, and Mike Yuliana

Subjects

Electric vehicle, role-based access control, identity-based cryptography, authentication, authorization, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Role-based Access Control (RBAC) promises an efficient authorization management system in accessing resources including electric vehicle (EV) data stored in the cloud server. In this EV data security implementation, access control has to be strong and efficient with respect to EV user authentication information, thus access control mechanism mandatorily relies on authentication as the system access prerequisite. In this work, identity-based cryptography (IBC) is incorporated with RBAC to invent an EV user role-based access control immersed in his/her identity as an internal EV user’s authentication and key exchange. Contribution to our work is in a simple way involving only the EV user’s signature to verify simultaneously both important aspects of authentication and authorization. In this case, authentication is carried out based on identity while authorization is activated based on EV user’s role. We formally prove that the proposed protocol satisfies the security requirements of both authentication and authorization outright by verifying EV user’s signature. The evaluation results show that the total computational cost for authentication and key exchange process between EV user and the server is practical enough and it only consumes approximately 800 ms.

Published

2024

40. Protecting Your Online Persona: A Preferential Selective Encryption Approach for Enhanced Privacy in Tweets, Images, Memes, and Metadata

Author

Nisha P. Shetty, Balachandra Muniyal, Aman Priyanshu, Dhruthi Kumar, Leander Melroy Maben, Yash Agrawal, Ruchita Natarajan, Shravya Gunda, and Nitish Gupta

Subjects

ABE, authentication, authorization, IBE, information security management, metadata anonymization, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The proliferation of online social networking websites has resulted in the growth of online communities and increased communication among users. However, sharing personal information can pose a privacy threat to users, leaving them vulnerable to attacks like blackmail and fraud. Also, with the rise in scandals such as Geofeedia and Cambridge Analytica, as well as Facebook’s admission of sharing user data with top mobile phone manufacturers, worries about privacy on social networking platforms have become increasingly palpable. This paper discusses the privacy risks of sharing personal information on social networking websites. The proposed approaches offer a comprehensive protection of user privacy and prevents unauthorized access to user’s data and information by social network providers and unauthorized users. The study employs a preferential selective encryption approach that encompasses not only tweets but also other personally identifiable components, including images, memes, and metadata. This approach serves as a comprehensive solution to encrypt all elements within a social network, making it a one-stop destination for privacy protection in online social networks (OSN). When compared to other investigated schemes, the proposed approach significantly reduces privacy leakage to 0.48 units while achieving a high utility score of 0.8116 units for non-sensitive attributes in tweets. Moreover, it demonstrates remarkable performance in maintaining sensitive information coverage with notably minimal information loss: 0.4 units for images, 0.3 units for memes, and 12.7 units for metadata. Thus, in essence these findings, backed by quantifiable measures of privacy and utility, strongly validate the effectiveness of the proposed methods in achieving a superior balance between privacy preservation and utility when compared to its contemporaries, particularly in applications like online social networks (OSNs). Furthermore, the suggested method’s architecture makes it platform-neutral; it can be customized for any social networking website, such as Facebook, Instagram, and LinkedIn, and it may include any attribute that the user chooses to keep private.

Published

2024

41. Blockchain-Based Authorization Mechanism for Educational Social Internet of Things

Author

Olfa Dallel, Souheil Ben Ayed, and Jamel Bel Hadj Tahar

Subjects

Access control, application-specific blockchain, authorization, delegation, educational social Internet of Things, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

The Social Internet of Things (SIoT) paradigm has been integrated in the education domain to enable educational IoT devices to establish social relationships and exchange academic services. Nonetheless, the social relationships are not adapted to the educational context where devices must be socially linked based on their academic roles and activities. Furthermore, the exchange of services raises the requirement to implement an access control mechanism. In SIoT, social constraints such as the social relationship type and contact frequency are critical requirements to make an access decision. However, these constraints cannot be specified using the eXtensible Access Control Markup Language (XACML) standard as device attributes nor as contextual conditions. In this paper, we propose an Educational Social Internet of Things (EducationalSIoT) platform implemented as an application-specific blockchain where we define new social relationships for educational devices. To control the access to the academic services, we suggest extending the XACML policy model by considering the social requirements, and accordingly, we adjust the policy evaluation process and suggest priority-based combining algorithms. Additionally, our platform ensures the delegation of access permission by defining delegation policies and controlling the delegation operation with consideration of the social features. The simulation results show that by integrating social features, an access request is evaluated in 0.22 ms and a delegation request is evaluated in 0.32 ms. Finally, we guarantee that our platform is protected against the man-in-the-middle and replay attacks.

Published

2024

42. Enhanced mechanism to prioritize the cloud data privacy factors using AHP and TOPSIS: a hybrid approach.

Author

Khan, Mohammad Zunnun, Shoaib, Mohd, Husain, Mohd Shahid, Ul Nisa, Khair, and Quasim, Mohammad. Tabrez

Subjects

DATA privacy, TOPSIS method, CLOUD storage, ACCESS control, LITERATURE reviews, TRUST

Abstract

Cloud computing is a new paradigm in this new cyber era. Nowadays, most organizations are showing more reliability in this environment. The increasing reliability of the Cloud also makes it vulnerable. As vulnerability increases, there will be a greater need for privacy in terms of data, and utilizing secure services is highly recommended. So, data on the Cloud must have some privacy mechanisms to ensure personal and organizational privacy. So, for this, we must have an authentic way to increase the trust and reliability of the organization and individuals The authors have tried to create a way to rank things that uses the Analytical Hieratical Process (AHP) and the Technique for Order Preference by Similarity to the Ideal Solution (TOPSIS). Based on the result and comparison, produce some hidden advantages named cost, benefit, risk and opportunity-based outcomes of the result. In this paper, we are developing a cloud data privacy model; for this, we have done an intensive literature review by including Privacy factors such as Access Control, Authentication, Authorization, Trustworthiness, Confidentiality, Integrity, and Availability. Based on that review, we have chosen a few parameters that affect cloud data privacy in all the phases of the data life cycle. Most of the already available methods must be revised per the industry's current trends. Here, we will use Analytical Hieratical Process and Technique for Order Preference by Similarity to the Ideal Solution method to prove that our claim is better than other cloud data privacy models. In this paper, the author has selected the weights of the individual cloud data privacy criteria and further calculated the rank of individual data privacy criteria using the AHP method and subsequently utilized the final weights as input of the TOPSIS method to rank the cloud data privacy criteria. [ABSTRACT FROM AUTHOR]

Published

2024

43. Certificateless Broadcast Encryption with Authorization Suitable for Storing Personal Health Records.

Author

Chen, Zhiwei, Deng, Lunzhi, Ruan, Yu, Feng, Shuai, Wang, Tao, and Wang, Bo

Subjects

*MEDICAL records, *DATA security, *INFORMATION sharing, *THERAPEUTICS, *PROBLEM solving

Abstract

Cloud medical treatment provides real-time data sharing in a cost-effective method, making it more practical to create, collect and manage vast amounts of personal health records (PHR) of patients. However, health information is considered highly sensitive. How to securely store and dynamically process massive patients' PHR data in a public cloud environment has become one of the most important challenges. Therefore, we introduce a novel solution to the problems of privacy exposure, data security and flexible access of storage modules in medical systems. In this paper, we present a privacy-preserving certificateless broadcast encryption with authorization for the PHR system, which is the best approach to effectively solve the above problems and avoid key escrow. In our work, users (patients) outsource their encrypted data to the cloud server and reallocate data accessing rights of recipients through an authorization set, sharing with a group of authorized receivers (doctors) in a secure and efficient manner. In addition, it is shown to be capable of achieving both plaintext confidentiality and receiver anonymity under the random oracle model. Moreover, the experimental evaluation shows that the proposed scheme enjoys low computational and communication overhead, indicating the feasibility and practicality of the scheme. [ABSTRACT FROM AUTHOR]

Published

2024

44. РОЗРОБКА ПРОГРАМНОГО ЗАСТОСУНКУ ДЛЯ БІОМЕТРИЧНОЇ ІДЕНТИФІКАЦІЇ КОРИСТУВАЧА ЗА СТИЛЕМ НАБОРУ НА КЛАВІАТУРІ

Author

Слабенко, Д. М., Стопакевич, О. А., and Стопакевич, А. О.

Subjects

*BIOMETRIC identification, *INTERVAL analysis, *APPLICATION software, *ERROR rates, *COMPUTER software development, *COMPUTER passwords

Abstract

This article describes the development of software to identify a user based on his or her keystrokes. Biometric authentication, particularly methods based on behavioral characteristics, is becoming increasingly popular. This is due to its ability to provide security without the need to remember passwords. The development of a biometric identification system based on the typing of a text entered by the user on the keyboard is an attractive solution, as it not only has the potential to provide a fairly reliable identification, but also does not require significant costs for special equipment. This paper discusses parameters that affect typing, including keystroke time, typing speed, error rates, and others that depend on individual user characteristics. The paper also discusses the drawbacks of biometric identification, particularly the impact of external factors such as fatigue or distraction on authentication accuracy. Based on the analysis of parameters, known methods and approaches to biometric identification by keystroke style, a new verification algorithm is proposed. It is based on the analysis of the time intervals between keystrokes and key searches, which allows to determine the correspondence between the stored user profile and the current keystroke. In order to reduce the influence of external factors, the use of a fixed text of at least 300 characters is recommended. The effectiveness of the developed software based on the proposed identification algorithm is confirmed by the results of the experiments conducted with the developed software application. The results show sufficient reliability and accuracy in the identification process. The work is of practical importance for the development of new security methods in information technology and opens new opportunities for the implementation of biometric systems in various fields. [ABSTRACT FROM AUTHOR]

Published

2024

45. User Name-Based Compression and Encryption of Images Using Chaotic Compressive Sensing Theory.

Author

K, Ashwini

Subjects

*IMAGE encryption, *DATA encryption, *SIGNAL-to-noise ratio, *IMAGE compression

Abstract

Simultaneous compression and encryption of images using a novel chaotic map is proposed in this paper. Both compression and encryption of images are carried out by the theory of compressive sensing (CS). A novel chaotic map with a high degree of chaos that is extremely sensitive to its initial parameters is proposed. A measurement matrix for the CS framework is designed based on the proposed map. The compression and recovery of images with different compression/sampling ratios are tested using the designed measurement matrix. Encryption of the compressed data is carried out using the proposed chaotic map and a novel user name-based encryption scheme. The entire encryption/decryption process proposed is completely dependent on the sequence obtained from the proposed chaotic map as well as the authorized user name. Thus, by this process, only authorized people with a valid user name will be able to decrypt the encrypted data and recover the actual underlying image. Simulation results on the proposed scheme with different images show that the average peak signal-to-noise ratio and structural similarity index values of about 32 dB and 0.861 are obtained for a sampling ratio of 0.5. Validations on the proposed map and the encryption process that were carried out using various standard tests prove the efficiency of the system in successfully compressing and encrypting the images. Also, the qualitative evaluation of the proposed compression–encryption process outperforms some of the existing works in the literature. [ABSTRACT FROM AUTHOR]

Published

2024

46. Privacy preserving content distribution framework for multidistributor DRM systems.

Author

Mishra, Ankita, Obaidat, Mohammad S., and Mishra, Dheerendra

Subjects

*RIGHT of privacy, *PRIVACY, *DIGITAL rights management, *CONTENT marketing

Abstract

Growing network technology and computing facilities present greater opportunities for the e‐commerce industry to sell digital content on an easily assessable platform. However, digital content creators need help due to digital content easily copying and redistributing without quality degradation. Digital rights management (DRM) systems are built up to deal with content piracy and effective distribution. However, traditional two‐party DRM systems are client–server architecture, which may create a bottleneck situation for large networks. At the same time, a multidistributor DRM (MD‐DRM) system can offer content distribution more effectively. However, as the number of distributors increases, chances of security and privacy vulnerability may increase. Thus, a MD‐DRM system requires with an effective mechanism of privacy‐preserving and secure content distribution. We proposed a privacy‐preserving and authorized content distribution framework that remains compatible with multiple distributors and single‐distributor architecture to achieve basic security attributes. Besides, the proposed scheme does not breach the key parameters of accountability. This mechanism makes traitor identification possible without violating the privacy rights of authorized consumers in multidistributor architecture. [ABSTRACT FROM AUTHOR]

Published

2024

47. Analysis of the Impact of Billing, Authorizations and Unknown Debts on the Technical Reserve of Health Promotion Companies: Case of HPC in Colombia.

Author

Charris, Nelvis Navarro, Perez, Enoc Barrientos, Tovar, Olson Ortiz, and Rey, Diego Duarte

Subjects

INVOICES, HEALTH promotion, IMPULSE response, DEBT, FINANCIAL management

Abstract

The management of the technical reserve in Empresas Promotoras de Salud (EPS) in Colombia demonstrates adequate financial capacity to ensure the effective delivery of healthcare services. Nevertheless, the reserve's inherent nature and the unpredictability it engenders in planning engender financial risks that impair the long-term viability of such companies. The study aims to examine how filed invoices, unsubmitted authorizations, and estimated unknown debts affect the technical reserve of EPSs in Colombia from 2016 to 2021 using statistical methods like Online Linguistic Support, Autoregressive Moving Average, Autoregressive Conditional Heteroscedasticity, and Vector Autoregression. A descriptive and correlational study was conducted, considering current regulatory policies and the health insurance industry. Time series data were analyzed and revealed an inverse correlation between the explanatory and response variables. The method permits the assessment of two variables that impact technical reserve management: an increase in filed invoices and undetected claims results in decreased reserves, and filed authorizations have the opposite effect. Technical term abbreviations are explained upon their initial use in the text. Citations follow a consistent footnote style and formatting features. Similarly, we forecasted the impulse response function for the effect of technical reserves and suggested developing a predictive methodology to manage, regulate, or eradicate financial management vulnerabilities linked to HPC in Colombia. We emphasize the significance of precise authorizations for medical services since undiscovered debts may lead to financial losses for health care providers. A systematic approach is necessary to adhere to applicable regulations, including Law 100 of 1993 and associated resolutions and decrees. Healthcare providers can enhance their financial performance by ensuring accurate authorization and billing practices, thereby avoiding financial penalties. [ABSTRACT FROM AUTHOR]

Published

2024

48. АНАЛІЗ ВИКОРИСТАННЯ ЙМОВІРНІСНИХ ФІЛЬТРІВ ДЛЯ ІНВАЛІДАЦІЇ ТОКЕНІВ АВТЕНТИФІКАЦІЇ У РОЗПОДІЛЕНИХ СИСТЕМАХ

Author

ХРУЩАК, С. В., ТКАЧЕНКО, О. М., БОЙКО, О. Р., and КОШМЕЛЮК, О. О.

Abstract

The article investigates the problem of centralized user authentication in complex distributed systems using cryptographic tokens based on JWT (JSON Web Token). Such systems allow decreasing request processing times comparable with conventional centralized authentication systems by allowing offline token verification. However, this creates problems with revoking of compromised or blocked tokens. The traditional approach used in such protocols as OAuth2, shifts this problem to the client side, complicating the client side and making the API more difficult to use. The article discusses the use of an approach that allows developers to keep all costs on the validation token validation on the server side without making significant changes to the system by blocklists. It is suggested to use probabilistic filters to transmit updates about blocked tokens. Such filters at the cost of losing some precision in checking if the entry belongs to the set of elements, using significantly less memory than would be necessary to store all the elements of the set. They are usually used to avoid slow operations such as disk or network access. As a result, it significantly reduces the memory usage on the services end and decreases the traffic volumes between the system components. The criteria for evaluating the performance of probabilistic filters were discussed for the task of periodically updating the lists of blocked identifiers of access tokens. Also various implementations of probabilistic filters were analyzed according to criteria. At the end recommendations for the application of specific probabilistic filters implementations and their parameters for distributed systems of various sizes are provided. [ABSTRACT FROM AUTHOR]

Published

2024

49. A systematic literature review of authorization and access control requirements and current state of the art for different database models.

Author

Mohamed, Aya Khaled Youssef Sayed, Auer, Dagmar, Hofer, Daniel, and Küng, Josef

Abstract

Purpose: Data protection requirements heavily increased due to the rising awareness of data security, legal requirements and technological developments. Today, NoSQL databases are increasingly used in security-critical domains. Current survey works on databases and data security only consider authorization and access control in a very general way and do not regard most of today's sophisticated requirements. Accordingly, the purpose of this paper is to discuss authorization and access control for relational and NoSQL database models in detail with respect to requirements and current state of the art. Design/methodology/approach: This paper follows a systematic literature review approach to study authorization and access control for different database models. Starting with a research on survey works on authorization and access control in databases, the study continues with the identification and definition of advanced authorization and access control requirements, which are generally applicable to any database model. This paper then discusses and compares current database models based on these requirements. Findings: As no survey works consider requirements for authorization and access control in different database models so far, the authors define their requirements. Furthermore, the authors discuss the current state of the art for the relational, key-value, column-oriented, document-based and graph database models in comparison to the defined requirements. Originality/value: This paper focuses on authorization and access control for various database models, not concrete products. This paper identifies today's sophisticated – yet general – requirements from the literature and compares them with research results and access control features of current products for the relational and NoSQL database models. [ABSTRACT FROM AUTHOR]

Published

2024

50. СТРАТЕГІЇ ТА ІННОВАЦІЙНІ ПІДХОДИ ДО ЗАХИСТУ БАЗ ДАНИХ В ЕПОХУ ЗРОСТАЮЧИХ КІБЕРЗАГРОЗ.

Author

Гарасимчук, Олег and Бужович, Оксана

Abstract

In today's digital environment, where databases play a critical role in storing and processing important information for various spheres of human activity, protection against cyber threats becomes an extremely urgent task. This accordingly places new demands and responsibilities on organizations. Modern technologies not only facilitate access to data, but also threaten its confidentiality and integrity. The rapid and ever-growing challenges of cyber secu)rity require the development of effective strategies and innovative approaches to database protection that ensure the reliability and resilience of databases in the face of ever-increasing cyber-attacks and security breaches. The work deals in detail with the organization of effective protection of information stored in databases. The main methods of infor)mation protection in databases are analyzed, in particular data encryption, mechanisms of authentication, access con)trol and monitoring of user activity. Their advantages and disadvantages are defined, as well as the possible conse)quences for data in case of non-compliance with these protection methods. The article highlights the importance of constant monitoring and analysis of user activity for timely detection and response to possible data security threats in the database system. The importance of a comprehensive approach to protection, which takes into account the specifics of a specific organization and allows to ensure an effective level of data security, is emphasized. [ABSTRACT FROM AUTHOR]

Published

2024