Dynamic access control method for SDP-based network environments

IF 2.3 4区计算机科学 Q2 ENGINEERING, ELECTRICAL & ELECTRONIC

EURASIP Journal on Wireless Communications and Networking Pub Date : 2023-09-18 DOI:10.1186/s13638-023-02305-9

Hyunjin You, Doochan Ko, Daniel Kim, Richard Wong, Inwhee Joe

{"title":"Dynamic access control method for SDP-based network environments","authors":"Hyunjin You, Doochan Ko, Daniel Kim, Richard Wong, Inwhee Joe","doi":"10.1186/s13638-023-02305-9","DOIUrl":null,"url":null,"abstract":"Abstract With online work environments and other distributed computing systems—such as cloud technologies or Internet of Things systems—becoming increasingly popular today due to the COVID-19 pandemic and general technological advances, the question of how to keep them secure has also become a pertinent concern. With this increased dependence on online systems for companies, cyberattacks have also been on the rise. To protect terminal devices, many companies have resorted to implementing a single boundary-defense model. This method has yielded positive results in securing the network from external threats, but it does not effectively protect network from internal security threats. With the vulnerabilities in the internal network security in mind, a dynamic access control method used with a zero-trust software-defined perimeter security model could be a viable solution. This study proposes a dynamic access control method using an engine with a new reward and penalty point-based system (RP Engine) and a dynamic task engine (DT Engine) for a zero-trust SDP security model.","PeriodicalId":12040,"journal":{"name":"EURASIP Journal on Wireless Communications and Networking","volume":"112 1","pages":"0"},"PeriodicalIF":2.3000,"publicationDate":"2023-09-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"EURASIP Journal on Wireless Communications and Networking","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1186/s13638-023-02305-9","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"ENGINEERING, ELECTRICAL & ELECTRONIC","Score":null,"Total":0}

引用次数: 0

Abstract

Abstract With online work environments and other distributed computing systems—such as cloud technologies or Internet of Things systems—becoming increasingly popular today due to the COVID-19 pandemic and general technological advances, the question of how to keep them secure has also become a pertinent concern. With this increased dependence on online systems for companies, cyberattacks have also been on the rise. To protect terminal devices, many companies have resorted to implementing a single boundary-defense model. This method has yielded positive results in securing the network from external threats, but it does not effectively protect network from internal security threats. With the vulnerabilities in the internal network security in mind, a dynamic access control method used with a zero-trust software-defined perimeter security model could be a viable solution. This study proposes a dynamic access control method using an engine with a new reward and penalty point-based system (RP Engine) and a dynamic task engine (DT Engine) for a zero-trust SDP security model.

Abstract Image

查看原文本刊更多论文

基于sdp的网络环境的动态访问控制方法

随着新型冠状病毒病疫情和技术进步，在线工作环境和其他分布式计算系统(如云技术或物联网系统)越来越受欢迎，如何保证其安全也成为人们关注的问题。随着企业对在线系统的依赖日益增加，网络攻击也呈上升趋势。为了保护终端设备，许多公司采用了单一的边界防御模式。该方法在保护网络免受外部威胁方面取得了积极效果，但不能有效保护网络免受内部安全威胁。考虑到内部网络安全中的漏洞，使用零信任软件定义的边界安全模型的动态访问控制方法可能是一种可行的解决方案。针对零信任SDP安全模型，提出了一种基于奖罚积分的动态访问控制方法(RP engine)和动态任务引擎(DT engine)。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

EURASIP Journal on Wireless Communications and Networking 工程技术-电信学

CiteScore

7.70

自引率

3.80%

发文量

109

审稿时长

8.0 months

期刊介绍： The overall aim of the EURASIP Journal on Wireless Communications and Networking (EURASIP JWCN) is to bring together science and applications of wireless communications and networking technologies with emphasis on signal processing techniques and tools. It is directed at both practicing engineers and academic researchers. EURASIP Journal on Wireless Communications and Networking will highlight the continued growth and new challenges in wireless technology, for both application development and basic research. Articles should emphasize original results relating to the theory and/or applications of wireless communications and networking. Review articles, especially those emphasizing multidisciplinary views of communications and networking, are also welcome. EURASIP Journal on Wireless Communications and Networking employs a paperless, electronic submission and evaluation system to promote a rapid turnaround in the peer-review process. The journal is an Open Access journal since 2004.