Authorization and Access Control e-bog

This book focuses on various authorization and access control techniques, threats and attack modeling, including an overview of the Open Authorization 2.0 (OAuth 2.0) framework along with user-managed access (UMA) and security analysis. Important key concepts are discussed regarding login credentials with restricted access to third parties with a primary account as a resource server. A detailed protocol overview and authorization process, along with security analysis of OAuth 2.0, are also discussed in the book. Case studies of websites with vulnerability issues are included.FEATURESProvides an overview of the security challenges of IoT and mitigation techniques with a focus on authorization and access control mechanismsDiscusses a behavioral analysis of threats and attacks using UML base modelingCovers the use of the OAuth 2.0 Protocol and UMA for connecting web applicationsIncludes role-based access control (RBAC), discretionary access control (DAC), mandatory access control (MAC) and permission-based access control (PBAC)Explores how to provide access to third-party web applications through a resource server by use of a secured and reliable OAuth 2.0 frameworkThis book is for researchers and professionals who are engaged in IT security, auditing and computer engineering.