Xiao, S, Ye, Y, Kanwal, N, Newe, T and Lee, B (2022) SoK: Context and Risk Aware Access Control for Zero Trust Systems. Security and Communication Networks, 2022 (702677). ISSN 1939-0114

[thumbnail of 7026779.pdf]
7026779.pdf - Published Version

Download (742kB) | Preview


Evolving computing technologies such as cloud, edge computing, and the Internet of Things (IoT) are creating a more complex, dispersed, and dynamic enterprise operational environment. New security enterprise architectures such as those based on the concept of Zero Trust (ZT) are emerging to meet the challenges posed by these changes. ZT systems treat internal and external networks as untrusted and subject both to the same security checking and control to prevent data breaches and limit internal lateral movement. Context awareness is a notion from the field of ubiquitous computing that is used to capture and react to the situation of an entity, based on the dynamics of a particular application or system context. The idea has been incorporated into several access control models. However, the overlap between context-aware access control and zero-trust security has not been fully explored. In this SoK, we conduct a systematic examination of ZT, context awareness, and risk-based access control to explore the critical elements of each and to identify areas of overlap and synergy to enhance the operation and deployment of ZT systems.

Item Type: Article
Additional Information: Copyright © 2022 Shiyu Xiao et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Subjects: Q Science > Q Science (General)
Q Science > QA Mathematics
T Technology > T Technology (General)
Divisions: Faculty of Natural Sciences > School of Computing and Mathematics
Related URLs:
Depositing User: Symplectic
Date Deposited: 14 Sep 2022 07:33
Last Modified: 14 Sep 2022 07:33
URI: https://eprints.keele.ac.uk/id/eprint/11404

Actions (login required)

View Item
View Item