Next-generation secure authentication and access control architectures: advanced techniques for securing distributed systems in modern enterprises
Prince Kumar
Abstract
With the move of enterprises toward cloud computing, the Internet of Things (IoT) and distributed digital ecosystems, traditional authentication and access control mechanisms like Role-Based Access Control (RBAC) and static Multi Factor Authentication (MFA), are not meeting the mark. This paper reviews next-generation authentication and access-control designs, including Zero Trust, Attribute-Based Access Control (ABAC), and risk-adaptive policies and examines how contextual authentication, continuous identity verification, and emerging technologies such as AI-powered risk assessments, privacy-preserving identity authentication, and decentralized identity models can be integrated. This paper also details ways in which AI has been utilized to power dynamic, risk adaptive mechanisms that can use real time contextual data such as user behaviour, device health and threat level to adjust permissions levels accordingly. Improvements in security, usability, scalability and adaptability are shown in comparative analyses with traditional models. In addition, the review describes the means by which policymakers and industry practitioners can derive implications from the research and provides future research and deployment strategies to be considered. This paper synthesizes recent advancements towards more predictive and resilient authentication frameworks with a goal to enable development of such authentication approaches to help reduce sophisticated cyber threats in distributed systems while supporting industry specific regulatory compliance.