Context-based Access Control and Trust Scores in Zero Trust Campus Networks
| dc.contributor.author | Lukaseder, Thomas | |
| dc.contributor.author | Halter, Maya | |
| dc.contributor.author | Kargl, Frank | |
| dc.contributor.editor | Reinhardt, Delphine | |
| dc.contributor.editor | Langweg, Hanno | |
| dc.contributor.editor | Witt, Bernhard C. | |
| dc.contributor.editor | Fischer, Mathias | |
| dc.date.accessioned | 2020-02-04T13:41:57Z | |
| dc.date.available | 2020-02-04T13:41:57Z | |
| dc.date.issued | 2020 | |
| dc.description.abstract | Research networks are used daily by thousands of students and scientific staff for education and research and therefore have a large number of sensitive and valuable resources. The currently predominant perimeter security model is failing more and more often to provide sufficient protection against attackers. This paper analyses to what extent the zero trust model that is popular in some commercial networks can also be applied to the open and heterogeneous research network of a German university. The concept presented herein to implement such an identity-based network model focuses in particular on the components which are necessary for authentication and authorization. The feasibility of the model is demonstrated by a self-implemented prototype that protects access control to a prominent eLearning system called Moodle. Non-functional performance tests show an increase in performance compared to the current system where access control is only conducted inside the web application. The Zero Trust Model enables the determination of the trustworthiness of individual identities and thus offers valuable new ways to secure a research network. | en |
| dc.identifier.doi | 10.18420/sicherheit2020_04 | |
| dc.identifier.isbn | 978-3-88579-695-4 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/31789 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | SICHERHEIT 2020 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-301 | |
| dc.subject | Network Security | |
| dc.subject | Network Management | |
| dc.subject | Zero-Trust | |
| dc.subject | Trust Scores | |
| dc.subject | Subjective Logic | |
| dc.title | Context-based Access Control and Trust Scores in Zero Trust Campus Networks | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 66 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 53 | |
| gi.conference.date | 17.-20. März 2020 | |
| gi.conference.location | Göttingen, Germany | |
| gi.conference.sessiontitle | Wissenschaftliche Beiträge |
Dateien
Originalbündel
1 - 1 von 1