PROAASEL: Prospect theory based continuous authentication attribute selection model

2016 Moratuwa Engineering Research Conference (MERCon) Pub Date : 2016-04-05 DOI:10.1109/MERCON.2016.7480120

U. Premarathne

{"title":"PROAASEL: Prospect theory based continuous authentication attribute selection model","authors":"U. Premarathne","doi":"10.1109/MERCON.2016.7480120","DOIUrl":null,"url":null,"abstract":"Existing continuous authentication models use a fixed set of attributes and do not consider the application specific requirements and associated vulnerabilities in their selection. Selecting appropriate attributes for continuous authentication is essentially a multi-criteria decision making process. Existing multi-criteria decision making models are less competent in providing a preference for each attribute in a set of possible attributes. In this paper we propose a utility based approach: PROAASEL, prospect theory based continuous authentication attribute selection model. The main assumption of our approach is the associated risks for each attribute are pre-defined in terms of known vulnerabilities. The main advantage of our model is the ability to select the attributes based on application specific risk characterizations. We have evaluated PROAASEL using CVE data from [1]. Furthermore, we compared the selection method with existing MCDM techniques TOPSIS and N-model for plausible application scenarios. The results reveal that PROAASEL is more expressive and offer more reliable selection when the associated risks are fixed.","PeriodicalId":184790,"journal":{"name":"2016 Moratuwa Engineering Research Conference (MERCon)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-04-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Moratuwa Engineering Research Conference (MERCon)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MERCON.2016.7480120","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Existing continuous authentication models use a fixed set of attributes and do not consider the application specific requirements and associated vulnerabilities in their selection. Selecting appropriate attributes for continuous authentication is essentially a multi-criteria decision making process. Existing multi-criteria decision making models are less competent in providing a preference for each attribute in a set of possible attributes. In this paper we propose a utility based approach: PROAASEL, prospect theory based continuous authentication attribute selection model. The main assumption of our approach is the associated risks for each attribute are pre-defined in terms of known vulnerabilities. The main advantage of our model is the ability to select the attributes based on application specific risk characterizations. We have evaluated PROAASEL using CVE data from [1]. Furthermore, we compared the selection method with existing MCDM techniques TOPSIS and N-model for plausible application scenarios. The results reveal that PROAASEL is more expressive and offer more reliable selection when the associated risks are fixed.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

PROAASEL:基于前景理论的连续认证属性选择模型

现有的连续身份验证模型使用一组固定的属性，并且在选择时不考虑特定于应用程序的需求和相关的漏洞。为持续身份验证选择适当的属性本质上是一个多标准决策过程。现有的多标准决策模型在为一组可能属性中的每个属性提供首选项方面能力较差。本文提出了一种基于效用的方法:PROAASEL，即基于前景理论的连续认证属性选择模型。我们的方法的主要假设是，每个属性的相关风险都是根据已知的漏洞预先定义的。我们模型的主要优点是能够根据特定于应用程序的风险特征选择属性。我们使用[1]的CVE数据对PROAASEL进行了评估。此外，我们将选择方法与现有的MCDM技术TOPSIS和n模型进行了比较，以确定合理的应用场景。结果表明，当相关风险固定时，PROAASEL具有更强的表达能力和更可靠的选择。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2016 Moratuwa Engineering Research Conference (MERCon)

自引率

0.00%

发文量