Tags → #access control

Recent research highlights the importance of advanced modeling and automated tools in enhancing cloud security, particularly in identifying vulnerabilities within Identity and Access Management configurations.

Recent advancements in cloud security research have led to improved methodologies for vulnerability detection and threat mitigation, highlighting the importance of continuous monitoring and proactive policy management.

Organizations are increasingly adopting Physical Access Control Systems (PACS) to secure entry points, but vulnerabilities in outdated technologies necessitate regular assessments and updates to enhance security measures.

ChainGuard introduces a decentralized authentication system utilizing blockchain technology to improve security, efficiency, and scalability across various industries.

The AWSecure Entry System is a cloud-based access control solution that utilizes Raspberry Pi hardware and AWS technologies to enhance security and operational efficiency while addressing the limitations of traditional access methods.

BOLA, or Broken Object Level Authorization, is a security vulnerability in APIs that arises when user permissions are not adequately verified, potentially allowing unauthorized access to sensitive resources.

Zero Trust Software-Defined Networking (ZT-SDN) is a proposed framework aimed at automating network access control and enhancing security by learning and enforcing access policies within Software-Defined Networks.

Researchers from the University of Massachusetts Amherst and ETH Zurich have introduced a new concept in functional encryption called access-controlled inner-product function-revealing encryption (AC-IPFRE), which emphasizes function evaluation based on specified access policies and has potential applications in various practical contexts.

The Microsoft Power Pages Web API is under scrutiny for potential exposure of sensitive Personally Identifiable Information due to misconfigurations and excessive permissions.