Context-Sensitive Access Control and Zero Trust for Security in E-Health

In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable...

Full description

Saved in:
Bibliographic Details
Main Authors: Freitas, Lucas L. C., Coelho, Kristtopher K., Nogueira, Michele, Vieira, Alex B., Nacif, Jose Augusto Miranda, Silva, Edelberto F.
Format: Conference Proceeding
Language:English
Subjects:
Access control
Computer architecture
Computers
Context modeling
Decision making
Performance evaluation
Proposals
Protection
Sensitivity
Zero Trust
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
cited_by
cites
container_end_page 6
container_issue
container_start_page 1
container_title
container_volume
creator Freitas, Lucas L. C.
Coelho, Kristtopher K.
Nogueira, Michele
Vieira, Alex B.
Nacif, Jose Augusto Miranda
Silva, Edelberto F.
description In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable if the user's credentials or device are compromised. Thus, this work proposes and evaluates a model based on Zero Trust to considerably increase security in e-health environments. The proposed model uses privilege reduction and user confidence analysis to perform access control. The evaluation follows simulation in different scenarios, assessing their assertiveness in delegating access. The results show the effective detection of anomalies in accesses by the model.
doi_str_mv 10.1109/ISCC61673.2024.10733673
format conference_proceeding
fullrecord <record><control><sourceid>ieee_CHZPO</sourceid><recordid>TN_cdi_ieee_primary_10733673</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>10733673</ieee_id><sourcerecordid>10733673</sourcerecordid><originalsourceid>FETCH-ieee_primary_107336733</originalsourceid><addsrcrecordid>eNqFjs0KgkAYALcgyMo3CPpeQNsfdfUYUthZT11E7JM2TGN3jXz7CurcaRjmMoRsGPUZo8n2mKdpxCIpfE554DMqhXjbhLiJTGIRUhEGXPApcXgUcE-KOJmThTFXSmkccumQLO07i0_r5dgZZdUDYVfXaAx8gu5bqLoznFD3UOjBWGh6DTnWg1Z2BNXB3suwau1lRWZN1Rp0v1yS9WFfpJmnELG8a3Wr9Fj-DsWf_AK0oz6l</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype></control><display><type>conference_proceeding</type><title>Context-Sensitive Access Control and Zero Trust for Security in E-Health</title><source>IEEE Xplore All Conference Series</source><creator>Freitas, Lucas L. C. ; Coelho, Kristtopher K. ; Nogueira, Michele ; Vieira, Alex B. ; Nacif, Jose Augusto Miranda ; Silva, Edelberto F.</creator><creatorcontrib>Freitas, Lucas L. C. ; Coelho, Kristtopher K. ; Nogueira, Michele ; Vieira, Alex B. ; Nacif, Jose Augusto Miranda ; Silva, Edelberto F.</creatorcontrib><description>In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable if the user's credentials or device are compromised. Thus, this work proposes and evaluates a model based on Zero Trust to considerably increase security in e-health environments. The proposed model uses privilege reduction and user confidence analysis to perform access control. The evaluation follows simulation in different scenarios, assessing their assertiveness in delegating access. The results show the effective detection of anomalies in accesses by the model.</description><identifier>EISSN: 2642-7389</identifier><identifier>EISBN: 9798350354232</identifier><identifier>DOI: 10.1109/ISCC61673.2024.10733673</identifier><language>eng</language><publisher>IEEE</publisher><subject>Access control ; Computer architecture ; Computers ; Context modeling ; Decision making ; Performance evaluation ; Proposals ; Protection ; Sensitivity ; Zero Trust</subject><ispartof>2024 IEEE Symposium on Computers and Communications (ISCC), 2024, p.1-6</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/10733673$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,780,784,789,790,27925,54555,54932</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/10733673$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Freitas, Lucas L. C.</creatorcontrib><creatorcontrib>Coelho, Kristtopher K.</creatorcontrib><creatorcontrib>Nogueira, Michele</creatorcontrib><creatorcontrib>Vieira, Alex B.</creatorcontrib><creatorcontrib>Nacif, Jose Augusto Miranda</creatorcontrib><creatorcontrib>Silva, Edelberto F.</creatorcontrib><title>Context-Sensitive Access Control and Zero Trust for Security in E-Health</title><title>2024 IEEE Symposium on Computers and Communications (ISCC)</title><addtitle>ISCC</addtitle><description>In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable if the user's credentials or device are compromised. Thus, this work proposes and evaluates a model based on Zero Trust to considerably increase security in e-health environments. The proposed model uses privilege reduction and user confidence analysis to perform access control. The evaluation follows simulation in different scenarios, assessing their assertiveness in delegating access. The results show the effective detection of anomalies in accesses by the model.</description><subject>Access control</subject><subject>Computer architecture</subject><subject>Computers</subject><subject>Context modeling</subject><subject>Decision making</subject><subject>Performance evaluation</subject><subject>Proposals</subject><subject>Protection</subject><subject>Sensitivity</subject><subject>Zero Trust</subject><issn>2642-7389</issn><isbn>9798350354232</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2024</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><recordid>eNqFjs0KgkAYALcgyMo3CPpeQNsfdfUYUthZT11E7JM2TGN3jXz7CurcaRjmMoRsGPUZo8n2mKdpxCIpfE554DMqhXjbhLiJTGIRUhEGXPApcXgUcE-KOJmThTFXSmkccumQLO07i0_r5dgZZdUDYVfXaAx8gu5bqLoznFD3UOjBWGh6DTnWg1Z2BNXB3suwau1lRWZN1Rp0v1yS9WFfpJmnELG8a3Wr9Fj-DsWf_AK0oz6l</recordid><startdate>20240626</startdate><enddate>20240626</enddate><creator>Freitas, Lucas L. C.</creator><creator>Coelho, Kristtopher K.</creator><creator>Nogueira, Michele</creator><creator>Vieira, Alex B.</creator><creator>Nacif, Jose Augusto Miranda</creator><creator>Silva, Edelberto F.</creator><general>IEEE</general><scope>6IE</scope><scope>6IL</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIL</scope></search><sort><creationdate>20240626</creationdate><title>Context-Sensitive Access Control and Zero Trust for Security in E-Health</title><author>Freitas, Lucas L. C. ; Coelho, Kristtopher K. ; Nogueira, Michele ; Vieira, Alex B. ; Nacif, Jose Augusto Miranda ; Silva, Edelberto F.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-ieee_primary_107336733</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Access control</topic><topic>Computer architecture</topic><topic>Computers</topic><topic>Context modeling</topic><topic>Decision making</topic><topic>Performance evaluation</topic><topic>Proposals</topic><topic>Protection</topic><topic>Sensitivity</topic><topic>Zero Trust</topic><toplevel>online_resources</toplevel><creatorcontrib>Freitas, Lucas L. C.</creatorcontrib><creatorcontrib>Coelho, Kristtopher K.</creatorcontrib><creatorcontrib>Nogueira, Michele</creatorcontrib><creatorcontrib>Vieira, Alex B.</creatorcontrib><creatorcontrib>Nacif, Jose Augusto Miranda</creatorcontrib><creatorcontrib>Silva, Edelberto F.</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan All Online (POP All Online) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Xplore</collection><collection>IEEE Proceedings Order Plans (POP All) 1998-Present</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Freitas, Lucas L. C.</au><au>Coelho, Kristtopher K.</au><au>Nogueira, Michele</au><au>Vieira, Alex B.</au><au>Nacif, Jose Augusto Miranda</au><au>Silva, Edelberto F.</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>Context-Sensitive Access Control and Zero Trust for Security in E-Health</atitle><btitle>2024 IEEE Symposium on Computers and Communications (ISCC)</btitle><stitle>ISCC</stitle><date>2024-06-26</date><risdate>2024</risdate><spage>1</spage><epage>6</epage><pages>1-6</pages><eissn>2642-7389</eissn><eisbn>9798350354232</eisbn><abstract>In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable if the user's credentials or device are compromised. Thus, this work proposes and evaluates a model based on Zero Trust to considerably increase security in e-health environments. The proposed model uses privilege reduction and user confidence analysis to perform access control. The evaluation follows simulation in different scenarios, assessing their assertiveness in delegating access. The results show the effective detection of anomalies in accesses by the model.</abstract><pub>IEEE</pub><doi>10.1109/ISCC61673.2024.10733673</doi></addata></record>
fulltext fulltext_linktorsrc
identifier EISSN: 2642-7389
ispartof 2024 IEEE Symposium on Computers and Communications (ISCC), 2024, p.1-6
issn 2642-7389
language eng
recordid cdi_ieee_primary_10733673
source IEEE Xplore All Conference Series
subjects Access control
Computer architecture
Computers
Context modeling
Decision making
Performance evaluation
Proposals
Protection
Sensitivity
Zero Trust
title Context-Sensitive Access Control and Zero Trust for Security in E-Health
url http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-29T09%3A39%3A17IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee_CHZPO&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=Context-Sensitive%20Access%20Control%20and%20Zero%20Trust%20for%20Security%20in%20E-Health&rft.btitle=2024%20IEEE%20Symposium%20on%20Computers%20and%20Communications%20(ISCC)&rft.au=Freitas,%20Lucas%20L.%20C.&rft.date=2024-06-26&rft.spage=1&rft.epage=6&rft.pages=1-6&rft.eissn=2642-7389&rft_id=info:doi/10.1109/ISCC61673.2024.10733673&rft.eisbn=9798350354232&rft_dat=%3Cieee_CHZPO%3E10733673%3C/ieee_CHZPO%3E%3Cgrp_id%3Ecdi_FETCH-ieee_primary_107336733%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=10733673&rfr_iscdi=true