Non-Deterministic and Risk Based Security Services

Volume 16, Number 4

Non-Deterministic and Risk Based Security Services

Authors

Srinivas Rao Doddi¹ and Akshay Krishna Kotamraju², ¹University of Los Angeles, USA, ²Founder Non-profit, USA

Abstract

This paper presents a comprehensive framework to address these challenges. Understanding various social engineering tactics is crucial for effective prevention and detection. Trust based models in entities enable many business objectives that may include speed to market, scalability, decentralization etc However, they also increase the attack surface due to "loose boundaries" between enforcement points or corresponding resource authorization servers and the service orchestration layer. The control points of enforcement are generally static across a spectrum of threat vectors such as Identity, Fraud, Authentication, Authorization, Cyber security and physical security etc. in this paper we propose a "Trust based security framework aka " Interdiction Services" that fundamentally is non-deterministic and risk based. This paper presents a converged security framework towards a comprehensive prevention and detection controls mechanism. The paper proposes a converged security framework that allows various parties from fraud, cyber, and physical security to collaborate but operate independently through a common framework of Interdiction Services.

Keywords

Security, Access, Authentication, Authorization, Assurance.