In information security systems, a single authentication mechanism plays a very important role in information processing systems as it provides convenient and secure authentication in multi-Web service environments today when service systems are growing rapidly, and thus there is a lot of research on it around the world. In particular, the access control schemes in single authentication mode have been studied a lot worldwide.
Verifying user’s trust in systems and performing a variety of access controls are very important as a large number of attacks on service systems are attributable to the malicious behavior of registered users.
The characteristics of SSO system make it very difficult to apply the traditional RBAC (Role Based Access Control) model directly because the roles of each service system may be the same but the corresponding rights may be different. Thus, there has been a lot of research on applying RBAC models that can facilitate user management to single authentication systems.
However, the previous dynamic access control schemes based on RBAC model failed to propose a detailed access control scheme according to user’s behavior changes.
Having analyzed the characteristics of the single authentication system and the reliability-based access control scheme, Myong Kwang Min, a section head at the Faculty of Information Science and Technology, has proposed a secure and flexible access control system for SSO system by combining the entropy weighting and the reliability-based access control scheme, and evaluated its performance.
The evaluation results show that the proposed access control model is superior to all single authentication schemes and trust-based access control schemes.