A multi-layer security system for data access control, authentication, and authorization

Abstract

Multi-Factor-Authentication is one of the most used services nowadays by all kinds of people, especially by many organizations. People use this service to authorize their stored data and to access it without any security disturbance. As the use of different storage systems for various types of data is increasing, we need to focus on security. Any kind of security threat can be a great threat to any company. While checking the most recent surveys of different security issues we find that 94% of organizations are moderate to extremely concerned about data security. According to research from Intel, insider threats are responsible for an incredible 43 percent of all breaches. Half are intentional and half are accidental. [62][42] In this paper, we are proposing a fully secure data flow for data security with data encryption, IAM, IDAAS, AAAS, MFA, and SAML to prevent unauthorized data access and insecure data storage. With these models, we can control access and authorization to secure both data storage and stored data access. Here, this system focuses on secure authentication, authorization, and access data control by using a multi-layer security system. In this multi-layer security system, there will be Multi-Factor-Authentication along with Two-Factor-Authentication via email or phone. To ensure security, this system has a key-exchange system where the primary key and secondary key will be generated as a One-Time-Password for super admin and co-admin. Then the system will check the OTP in the Key Exchange process. In the future, the system will also be adding biometric authentication in this system for the co-admins. There will be two biometric options which are Irish Scanner and Fingerprint so that we can ensure the high-level authentication security for this system.