access control
qkiii123
WEEKL8.docGoutham Krishna Mummaneni
week 9 discussion
窗体顶端
Data security is a critical element for organizations across all industries, government entities and individuals. This is because data breaches are more common now than ever before. Biometric data is computer data that is developed during a biometric process, such as all verification and identification data. This may include fingerprints, eye scans, models, samples and similarity scores. Privacy is one of several key concerns in the current “cloudification” trend, such as ensuring the privacy of user data and transactions during the outsourcing of data, applications, and infrastructure to the cloud. This is due to a wide range of factors, such as changing societal expectations, and the delegation of the control of the data and transactions to geographically distributed data centers, including in regimes that may not share the same underpinning legislative framework .A hardware-based recognition system is where the data is stored on a specific piece of hardware and works with the device to recognise the data, without storing the data on the device itself. This offers a fast response during user authentication as the biometric templates are stored locally and the recognition system does not require any external response.
The proliferation of cloud applications has attracted unwanted attention from hackers who are now focusing their efforts on data in the cloud. Hackers can easily trick someone with a valid username and password into disclosing their credentials through a phishing attack. The traditional way of authenticating users through usernames and passwords just isn’t cutting it anymore.
MFA is a technique that enforces additional factors aside from usernames and passwords to fortify authentication for Active Directory, cloud applications, and more. ADSelfService Plus, an Active Directory self-service password management and single sign-on (SSO) solution, protects access to cloud applications with MFA. By enabling SSO between ADSelfService Plus and SAML 2.0-enabled cloud applications like Google Workspace and Salesforce, you can easily secure users’ identities in the cloud.
When SSO is enabled, users must always authenticate themselves in ADSelfService Plus—first using their username and password and then through MFA authenticators chosen by you. Only then will users be able to access cloud applications.
References:
ManageEngine. (n.d.). Multi-factor authentication for cloud applications - ManageEngine ADSelfService plus. ManageEngine - IT Operations and Service Management Software. https://www.manageengine.com/products/self-service-password/multi-factor-authentication-for-cloud-apps-security.htm
Biometric authentication and data security in cloud computing. (2018, January 1). ResearchGate. https://www.researchgate.net/publication/319097680_Biometric_Authentication_and_Data_Security_in_Cloud_Computing
窗体底端
Adithya Reddy Vatti
Discussion 9
窗体顶端
Biometrics and Global Identity
The cloud is a safer platform for biometric data. The storage of biometric data in the cloud entails biometric servers that are safer and provide ways that are more secure. The database server is a technique of storage of biometric data that is more secure. The presence of a network-based approach might include situations where there is consideration of the situations that are more vulnerable to designated cyberattacks (Barra et al., 2018). The cloud is a part of the national infrastructure and sometimes might be considered as an institution that is very secure. Storage of data in an external server is essential because it helps in the optimization of the multi-location verification (Hussain & Chaudhry, 2019).
Breaching the cloud server adds security on the biometric data and situations that are associated with multi-location verification (Hussain & Chaudhry, 2019). Breaching the database or cloud server for added security situation and on the biometric data that is encrypted and stored to the limit is associated with dangers that ensure the cloud is more secure and associated with the storage of local biometric important situations (Barra et al., 2018). This is associated with local folder data and the approach for encryption. Breaching a device is generally considered to be more secure and easier as compared to getting to breach a well-protected facility (Hussain & Chaudhry, 2019).
A situation where the attacker has the ability to achieve the designated fingerprint and multi-factor authentication (MFA), would then have the prevention of the hacker gaining access to the account through MFA (Barra et al., 2018). Securing the account by MFA would need the reauthentication of the identity in more than two methods prior to accessing the accounts, MFA enables users to be best suited to add some extra protection levels that are associated with the situations needing passwords to be achieved.
References
Barra, S., Castiglione, A., De Marsico, M., Nappi, M., & Choo, K. K. R. (2018). Cloud-based biometrics (biometrics as a service) for smart cities, nations, and beyond. IEEE Cloud Computing, 5(5), 92-100.
Hussain, S., & Chaudhry, S. A. (2019). Comments on “Biometrics-based privacy-preserving user authentication scheme for cloud-based industrial internet of things deployment”. IEEE Internet of Things Journal, 6(6), 10936-10940.
窗体底端
