Intention Based Access Control
- 詳細技術說明
- The technology addresses the insider threat through the development of a novel non-identity-based access control mechanism that determines why access is being requested as opposed to identifying who has requested access.
- *Abstract
-
The technology addresses the “Pre-crime” aspect in the insider threat context. It detects an intention of access and therefore detects an existence of a plan to commit maleficence and prevents a crime before it happens. It bridges the gaps between Cognitive Psychology, Brain-Computer Interface (BCI), and Information Technology security as it uses the EEG signals as the main physiological signals to detect intentions and motivation of a user requesting access to protected resources. This solution opens new commercial application in the Intention detection, motivation detection, Pre-crime and mainly non-identity-based access control areas. The novelty of this solution is that it addresses the insider threat from the access control layer by proposing a non-identity-based access control mechanism that investigates “WHY” access is being requested as opposed to authenticating an identity and answering “WHO” is requesting access. It investigates the possibility of detecting intentions and motivations of access. It investigates the possibility of the proposed access control system, Intent-based Access Control, in detecting and preventing the insider threat.
Joseph Miller
IP Officer - UOIT
joe.miller@uoit.ca
- 國家/地區
- 美國
