Hassan Rasheed

Work place: Deanship of Information Technology, Taif, University Taif, Saudi Arabia

E-mail: hsrasheed@acm.org

Website:

Research Interests: Computer systems and computational processes, Computer Architecture and Organization, Network Security, Distributed Computing, Data Structures and Algorithms

Biography

Hassan Rasheed received his Ph.D. and M.S. degrees in Computer Engineering from the University of Florida. He is currently an Assistant Professor in the Deanship of Information Technology at Taif University in Taif, Saudi Arabia. He also previously served as a postdoctoral research fellow at the Air Force Research Lab in Rome, NY. His broad industry experience includes positions at Ford Motor Company and Honeywell Space Systems and ranges from systems development to management. His current research interests include information security, distributed systems and data mining.

Author Articles
Context-Sensitive Access Control Policy Evaluation and Enforcement Using Vulnerability Exploitation Data

By Hassan Rasheed

DOI: https://doi.org/10.5815/ijcnis.2013.11.08, Pub. Date: 8 Sep. 2013

Conventional approaches for adapting security enforcement in the face of attacks rely on administrators to make policy changes that will limit damage to the system. Paradigm shifts in the capabilities of attack tools demand supplementary strategies that can also adjust policy enforcement dynamically. We extend the current research by proposing an approach for integrating real-time security assessment data into access control systems. Critical application scenarios are tested to examine the impact of using risk data in policy evaluation and enforcement.

[...] Read more.
Data Sharing for Context-Sensitive Access Control Policy Evaluation and Enforcement

By Hassan Rasheed

DOI: https://doi.org/10.5815/ijcnis.2012.11.02, Pub. Date: 8 Oct. 2012

Context-awareness has long been an important building block in designing systems that vary their operating behavior based on an analysis of rapidly changing operating conditions. There is the need however to define context more formally so that context data-sharing can take place between systems and more complex interactions between connected systems can be developed. The area of computer security is examined in particular as an area where the representation and sharing of context data can lead to more effective policy enforcement. A framework is proposed for sharing data between assessment sensors and enforcement mechanisms in order to facilitate more accurate policy enforcement. A detailed performance analysis of the proposed system is offered along with conclusions on the feasibility of such systems.

[...] Read more.
Other Articles