Sentient-based Access Control model: A mitigation technique for Advanced Persistent Threats in Smartphones

Sentient-based Access Control model: A mitigation technique for Advanced Persistent Threats in Smartphones

This research sheds light on the nature of an advanced persistent threat (APT) on smartphones by analysing real APT attack cases targeting smartphone users. Based on the research, context-aware access control is the best technique to minimise APT instigated by social engineering attacks in smartphon...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Journal of information security and applications 2020-04, Vol.51, p.102431, Article 102431
Hauptverfasser: Zulkefli, Zakiah, Mahinderjit Singh, Manmeet
Format: Artikel
Sprache:eng
Schlagworte:
Advanced persistent threat (APT)
Context aware
Role-centric access control
Sensor
Smartphone
Social engineering
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This research sheds light on the nature of an advanced persistent threat (APT) on smartphones by analysing real APT attack cases targeting smartphone users. Based on the research, context-aware access control is the best technique to minimise APT instigated by social engineering attacks in smartphones. Therefore, this research proposes an access control model known as sentient-based access control model (SENSATE), which combines role- and attribute-based and multi-level security to maintain information integrity and confidentiality that can be infringed through social engineering attacks. The implementation of existing smartphone sensors in the design of SENSATE is a novel approach in the fight against smartphone cybercrimes, such as APT.
ISSN:2214-2126
DOI:10.1016/j.jisa.2019.102431