Open Access Open Access  Restricted Access Subscription Access

Non-Deterministic and Risk Based Security Services


Affiliations
1 Department of Information Technology, University of Los Angeles, Los Angeles, California, United States
2 Founder Non-profit, Think Cosmos, Saratoga, California, United States

This paper presents a comprehensive framework to address these challenges. Understanding various social engineering tactics is crucial for effective prevention and detection. Trust based models in entities enable many business objectives that may include speed to market, scalability, decentralization etc However, they also increase the attack surface due to "loose boundaries" between enforcement points or corresponding resource authorization servers and the service orchestration layer. The control points of enforcement are generally static across a spectrum of threat vectors such as Identity, Fraud, Authentication, Authorization, Cyber security and physical security etc. in this paper we propose a "Trust based security framework aka " Interdiction Services" that fundamentally is non-deterministic and risk based. This paper presents a converged security framework towards a comprehensive prevention and detection controls mechanism. The paper proposes a converged security framework that allows various parties from fraud, cyber, and physical security to collaborate but operate independently through a common framework of Interdiction Services

Keywords

Security, Access, Authentication, Authorization, Assurance
User
Notifications
Font Size

Abstract Views: 82




  • Non-Deterministic and Risk Based Security Services

Abstract Views: 82  | 

Authors

Srinivas Rao Doddi
Department of Information Technology, University of Los Angeles, Los Angeles, California, United States
Akshay Krishna Kotamraju
Founder Non-profit, Think Cosmos, Saratoga, California, United States

Abstract


This paper presents a comprehensive framework to address these challenges. Understanding various social engineering tactics is crucial for effective prevention and detection. Trust based models in entities enable many business objectives that may include speed to market, scalability, decentralization etc However, they also increase the attack surface due to "loose boundaries" between enforcement points or corresponding resource authorization servers and the service orchestration layer. The control points of enforcement are generally static across a spectrum of threat vectors such as Identity, Fraud, Authentication, Authorization, Cyber security and physical security etc. in this paper we propose a "Trust based security framework aka " Interdiction Services" that fundamentally is non-deterministic and risk based. This paper presents a converged security framework towards a comprehensive prevention and detection controls mechanism. The paper proposes a converged security framework that allows various parties from fraud, cyber, and physical security to collaborate but operate independently through a common framework of Interdiction Services

Keywords


Security, Access, Authentication, Authorization, Assurance