Synergistic Information Security Design Implementation based on Role-Based Access Control, Information Classification, and AES Cryptographic Encryption

  • Marjay C. Bumalod Isabela State University, Philippines
  • Rose Mary A. Velasco Isabela State University, Philippines

Abstract

Security technology has undergone significant development and research in response to increasing cyber threats. The Intranet Document Management System (IDMS) was created to centralize documents within organizations, ensuring efficiency and streamlining processes. Given the critical nature of document management in organizational workflows, secure and safe management is paramount. This study aims to develop a secure IDMS using Advanced Encryption Standard (AES) encryption, Role-Based Access Control (RBAC), and an Information Classification Model. We also provide a comprehensive overview of the key characteristics and performance metrics of each access control model and cryptographic algorithm, facilitating decision-making for system design and implementation. The system offers high granularity, ease of administration through role assignments with document classification, high flexibility with customized permissions, and scalability with roles and classification. AES is chosen for its high security and fast performance, making it a widely used encryption standard.

Keywords: Advanced Encryption Standard (AES), Access Control, Cryptographic Algorithm, Document Management System, Information Classification

 

Received Date: April 2, 2024
Revised Date: May 10, 2024
Accepted Date: May 14, 2024

Published
2024-05-17
How to Cite
Bumalod, M., & Velasco, R. M. (2024). Synergistic Information Security Design Implementation based on Role-Based Access Control, Information Classification, and AES Cryptographic Encryption. International Journal in Information Technology in Governance, Education and Business, 6(1), 68-85. https://doi.org/https://doi.org/10.32664/ijitgeb.v6i1.136