Enhanced Multilevel Fuzzy Inference System for Risk Adaptive Hybrid RFID Access Control System

Authors

  • Dr. Dima Mahmoud Suleiman The University of Jordan, King Abdullah II School for Information Technology, Amman, Jordan
  • Dr. Malek Al-Zewairi Jordan Information Security and Digital Forensics Research Group, Amman, Jordan
  • Prof. Adnan Shaout The University of Michigan, Dearborn, USA

DOI:

https://doi.org/10.3991/ijoe.v18i04.27485

Keywords:

Fuzzy Logic, Fuzzy Inference System, Access Control, RFID, Security, Multilevel.

Abstract


Risk-based access control systems are part of identity management systems used to accommodate environments with needs for dynamic access control decisions. The risk value is subjected to overestimation or underestimation since it is measured qualitatively, thus; causing uncertainty problems, which was apparent in a previously proposed hybrid risk adaptive (HRA) access control system. Conversely, Fuzzy Inference Systems can deal with the uncertainty of measures and control the outcomes more precisely; therefore, a multilevel fuzzy inference system (HRA-MFIS) was proposed to replace the risk assessment model in HRA. This paper continues to improve the previous model by introducing an enhanced multilevel fuzzy inference system (EHRA-MFIS), which utilizes user behaviour and time analysis to detect anomalous access behaviour. Moreover, it improves the hybrid adaptive risk calculation module by adding authentication, classification and the degree of user anomalous behaviour to the risk calculation algorithm. The results show that the proposed model has smoothed out the transition between the different risk levels and enhanced the system's overall security by considering the failed authorization attempts and failed authentication attempts, asset classification, and user behaviour when calculating the risk level.

Covr iJOE Vol. 18 No. 04 (2022)

Downloads

Published

2022-03-22

How to Cite

Suleiman, D., Al-Zewairi, M. ., & Shaout, A. S. (2022). Enhanced Multilevel Fuzzy Inference System for Risk Adaptive Hybrid RFID Access Control System. International Journal of Online and Biomedical Engineering (iJOE), 18(04), pp. 31–51. https://doi.org/10.3991/ijoe.v18i04.27485

Issue

Vol. 18 No. 04 (2022)

Section

Papers

License

Copyright (c) 2022 Dima Mahmoud Suleiman

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

The submitting author warrants that the submission is original and that she/he is the author of the submission together with the named co-authors; to the extend the submission incorporates text passages, figures, data or other material from the work of others, the submitting author has obtained any necessary permission.
Articles in this journal are published under the Creative Commons Attribution Licence (CC-BY What does this mean?). This is to get more legal certainty about what readers can do with published articles, and thus a wider dissemination and archiving, which in turn makes publishing with this journal more valuable for you, the authors.
By submitting an article the author grants to this journal the non-exclusive right to publish it. The author retains the copyright and the publishing rights for his article without any restrictions.