Effective C-RBAC Framework Based on Role Provisioning for Data Protection in Business Application Systems

Show simple item record

dc.contributor.author Auxilia, M.
dc.contributor.author Raja, K.
dc.contributor.author Kannan, K.
dc.date.accessioned 2019-04-06T07:58:22Z
dc.date.available 2019-04-06T07:58:22Z
dc.date.issued 2019-02
dc.identifier.isbn 9789550481255
dc.identifier.uri http://www.erepo.lib.uwu.ac.lk/bitstream/handle/123456789/126/87.pdf?sequence=1&isAllowed=y
dc.description.abstract Security plays a key role in any business organization for the purpose of information sharing and privacy. However, there is a lack of privacy and safety among the information. Business data and organizational data are considered to be the highly sensitive data because of the impact that may result in the business process. The employees of any organization are the real assets for their concern and it’s the responsibility of the organization should have a clear vision about the activity of all the employees under legal business development. In this article, new RBAC (Role Based Access Control) framework is developed to navigate the process for a particular employee and their services in any business organization. RBAC framework is especially developed to provide security based on role provisioning during information sharing. AgZKPk (Aggregate Zero Knowledge Proof knowledge) and OCBE (Oblivious Commitment Based Envelope) Protocols are used for role enrollment for RBAC concept (condition policies). In this paper, C-RBAC (Cloud– Role Based Access Control) framework is proposed which can fit in any business organization application. In this C-RBAC, PEP (Policy Enforcement Point) is used to avoid unwanted information sharing with the neighbouring employee or peers. The analysis is done based on the security level for several security algorithms in C-RBAC framework. C-RBAC framework with RSA provide well security based on number of employee with the data handled by the particular employee than the existing RBAC framework with AES (Asymmetric Encryption Standard) and RSA (Rivest–Shamir–Adleman) in terms of number of information they can handle per user. Our analysis revels few threats that arise due to sharing of data and violation in agreements. Also, it is inferred that by adopting our proposed framework, we can avoid data leaks and can protect the data even within the organization. en_US
dc.language.iso en en_US
dc.publisher Uva Wellassa University of Sri Lanka en_US
dc.subject Computer Science en_US
dc.subject Information Science en_US
dc.subject Computing and Information Science en_US
dc.title Effective C-RBAC Framework Based on Role Provisioning for Data Protection in Business Application Systems en_US
dc.title.alternative International Research Conference 2019 en_US
dc.type Other en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search UWU eRepository


Browse

My Account