Securing context-aware applications using environment roles

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Securing context-aware applications using environment roles

Full text

Pdf (131 KB)

Source

ACM Workshop on Role Based Access Control archive
Proceedings of the sixth ACM symposium on Access control models and technologies table of contents

Chantilly, Virginia, United States

Pages: 10 - 20

Year of Publication: 2001

ISBN:1-58113-350-2

Authors

Michael J. Covington	Georgia Institute of Technology, Atlanta
Wende Long	Georgia Institute of Technology, Atlanta
Srividhya Srinivasan	Georgia Institute of Technology, Atlanta
Anind K. Dev	Georgia Institute of Technology, Atlanta
Mustaque Ahamad	Georgia Institute of Technology, Atlanta
Gregory D. Abowd	Georgia Institute of Technology, Atlanta

Sponsor

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 17, Downloads (12 Months): 196, Citation Count: 38

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/373256.373258 What is a DOI?

ABSTRACT

In the future, a largely invisible and ubiquitous computing infrastructure will assist people with a variety of activities in the home and at work. The applications that will be deployed in such systems will create and manipulate private information and will provide access to a variety of other resources. Securing such applications is challenging for a number of reasons. Unlike traditional systems where access control has been explored, access decisions may depend on the context in which requests are made. We show how the well-developed notion of roles can be used to capture security-relevant context of the environment in which access requests are made. By introducing environment roles, we create a uniform access control framework that can be used to secure context-aware applications. We also present a security architecture that supports security policies that make use of environment roles to control access to resources.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, Supporting Periodic Authorizations and Temporal Reasoning in Database Access Control, Proceedings of the 22th International Conference on Very Large Data Bases, p.472-483, September 03-06, 1996
	2	Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, A Temporal Access Control Mechanism for Database Systems, IEEE Transactions on Knowledge and Data Engineering, v.8 n.1, p.67-80, February 1996 [doi>10.1109/69.485637]
	3	Andrew D. Birrell, Butler W. Lampson, Roger M. Needham, and Michael D. Schroeder. A global authentication service without global trust. In Proceedings of the IEEE Symposium on Security and Privacy, pages 223-230, 1986.
	4	Michael J. Covington, Matthew J. Moyer, and Mustaque Ahamad. Generalized role-based access control for securing future applications. In Proceedings of the National Information Systems Security Conference (NISSC), October 2000. Also appeared as technical report GIT-CC-00-02, available from the Georgia Tech College of Computing.
	5	Anind K. Dey and Gregory D. Abowd. The context toolkit: Aiding the development of context-aware applications. In Workshop on Software Engineering for Wearable and Pervasive Computing, June 2000.
	6	Anind K. Dey, Daniel Salber, and Gregory D. Abowd. A context-based infrastructure for smart environments. In Proceedings of the 1st International Workshop on Managing Interactions in Smart Environments (MANSE '99), Dublin, Ireland, pages 114-128, December 1999.
	7	David F. Ferraiolo , John F. Barkley , D. Richard Kuhn, A role-based access control model and reference implementation within a corporate intranet, ACM Transactions on Information and System Security (TISSEC), v.2 n.1, p.34-64, Feb. 1999 [doi>10.1145/300830.300834]
	8	Morrie Gasser, Andy Goldstein, Charlie Kaufman, and Butler Lampson. The digital distributed system security architecture. In Proceedings of the National Computer Security Conference, pages 305-319. NIST/NCSC, October 1989.
	9	Luigi Giuri , Pietro Iglio, Role templates for content-based access control, Proceedings of the second ACM workshop on Role-based access control, p.153-159, November 06-07, 1997, Fairfax, Virginia, United States [doi>10.1145/266741.266773]
	10	R. J. Hayton, J. M. Bacon, and K. Moody. Access control in an open distributed environment. In Proceedings of the IEEE Symposium on Security and Privacy, pages 3-14, 1998.
	11	Amir Herzberg , Yosi Mass , Joris Michaeli , Yiftach Ravid , Dalit Naor, Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers, Proceedings of the 2000 IEEE Symposium on Security and Privacy, p.2, May 14-17, 2000
	12	Georgia Tech Broadband Institute. The Aware Home Research Initiative. Research Initiative Web Page, 2000. http://www.cc.gatech.edu/fce/ahri/.
	13	Sushil Jajodia , Pierangela Samarati , V. S. Subrahmanian , Eliza Bertino, A unified framework for enforcing multiple access control policies, Proceedings of the 1997 ACM SIGMOD international conference on Management of data, p.474-485, May 11-15, 1997, Tucson, Arizona, United States
	14	Cory D. Kidd, Thomas O'Connell, Kris Nagel, Sameer Patil, and Gregory D. Abowd. Building a better intercom: Context-mediated communication within the home. Technical Report GIT-GVU-00-27. GVU Center, Georgia Institute of Technology. June 2000.
	15	D. Moore, I. Essa, and M. Hayes. Exploiting human actions and object context for recognition tasks. In IEEE International Conference on Computer Vision, 1999.
	16	Matthew J. Moyer and Mustaque Ahamad. Generalized role based access control. Technical Report GIT-CC-00-16, College of Computing, Georgia Institute of Technology, September 2000.
	17	Ronald L. Rivest and Butler Lampson. SDSI - a simple distributed security infrastructure. SDSI Version 1.1, October 1996.
	18	Ravi S. Sandhu. Role based access control. In Advances in Computers, volume 46. Academic Press, 1998.
	19	Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996 [doi>10.1109/2.485845]
	20	HongHai Shen , Prasun Dewan, Access control for collaborative environments, Proceedings of the 1992 ACM conference on Computer-supported cooperative work, p.51-58, November 01-04, 1992, Toronto, Ontario, Canada [doi>10.1145/143457.143461]
	21	Thomas Y. C. Woo and Simon S. Lam. Designing a distributed authorization service. In Proceedings of IEEE INFOCOM, March 1998.

CITED BY 38

	Arun Kumar , Neeran Karnik , Girish Chafle, Context sensitivity in role-based access control, ACM SIGOPS Operating Systems Review, v.36 n.3, p.53-66, July 2002
	Teddy Mantoro , Chris Johnson, Location history in a low-cost context awareness environment, Proceedings of the Australasian information security workshop conference on ACSW frontiers 2003, p.153-158, February 01, 2003, Adelaide, Australia
	Sastry Duri , Jeffrey Elliott , Marco Gruteser , Xuan Liu , Paul Moskowitz , Ronald Perez , Moninder Singh , Jung-Mu Tang, Data protection and data sharing in telematics, Mobile Networks and Applications, v.9 n.6, p.693-701, December 2004
	Mark Strembeck , Gustaf Neumann, An integrated approach to engineer and enforce context constraints in RBAC environments, ACM Transactions on Information and System Security (TISSEC), v.7 n.3, p.392-427, August 2004
	Urs Hengartner , Peter Steenkiste, Implementing access control to people location information, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
	Jean Bacon , Ken Moody , Walt Yao, A model of OASIS role-based access control and its support for active security, ACM Transactions on Information and System Security (TISSEC), v.5 n.4, p.492-540, November 2002
	H. F. Wedde , Mario Lischka, Role-based access control in ambient and remote space, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
	Gustaf Neumann , Mark Strembeck, An approach to engineer and enforce context constraints in an RBAC environment, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
	Dan Hong , Mingxuan Yuan , Vincent Y. Shen, Dynamic privacy management: a plug-in service for the middleware in pervasive computing, Proceedings of the 7th international conference on Human computer interaction with mobile devices & services, September 19-22, 2005, Salzburg, Austria
	Elisa Bertino , Barbara Catania , Maria Luisa Damiani , Paolo Perlasca, GEO-RBAC: a spatially aware RBAC, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
	R. J. Hulsebosch , A. H. Salden , M. S. Bargh , P. W. G. Ebben , J. Reitsma, Context sensitive access control, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
	William Tolone , Gail-Joon Ahn , Tanusree Pai , Seng-Phil Hong, Access control in collaborative systems, ACM Computing Surveys (CSUR), v.37 n.1, p.29-41, March 2005
	Alex S. Taylor , Laurel Swan, Artful systems in the home, Proceedings of the SIGCHI conference on Human factors in computing systems, April 02-07, 2005, Portland, Oregon, USA
	Urs Hengartner , Peter Steenkiste, Access control to people location information, ACM Transactions on Information and System Security (TISSEC), v.8 n.4, p.424-456, November 2005
	Kazuhiro Minami , David Kotz, Secure context-sensitive authorization, Pervasive and Mobile Computing, v.1 n.1, p.123-156, March 2005
	Anand R. Tripathi , Devdatta Kulkarni , Tanvir Ahmed, A specification model for context-based collaborative applications, Pervasive and Mobile Computing, v.1 n.1, p.21-42, March 2005
	James B. D. Joshi , Elisa Bertino , Arif Ghafoor, An Analysis of Expressiveness and Design Issues for the Generalized Temporal Role-Based Access Control Model, IEEE Transactions on Dependable and Secure Computing, v.2 n.2, p.157-175, April 2005
	Liang Chen , Jason Crampton, On spatio-temporal constraints and inheritance in role-based access control, Proceedings of the 2008 ACM symposium on Information, computer and communications security, March 18-20, 2008, Tokyo, Japan
	Nicholas Paul Sheppard , Reihaneh Safavi-Naini, Sharing digital rights with domain licensing, Proceedings of the 4th ACM international workshop on Contents protection and security, October 28-28, 2006, Santa Barbara, California, USA
	Xinwen Zhang , Masayuki Nakae , Michael J. Covington , Ravi Sandhu, A usage-based authorization framework for collaborative computing systems, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA
	Jun Noda , Mie Takahashi , Itaru Hosomi , Hisashi Mouri , Yoshiaki Takata , Hiroyuki Seki, Integrating presence inference into trust management for ubiquitous systems, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA
	Adam J. Lee , Kazuhiro Minami , Marianne Winslett, Lightweight cnsistency enforcement schemes for distributed proofs with hidden subtrees, Proceedings of the 12th ACM symposium on Access control models and technologies, June 20-22, 2007, Sophia Antipolis, France
	Maria Luisa Damiani , Elisa Bertino , Barbara Catania , Paolo Perlasca, GEO-RBAC: A spatially aware RBAC, ACM Transactions on Information and System Security (TISSEC), v.10 n.1, p.2-es, February 2007
	William Claycomb , Dongwan Shin, Towards secure resource sharing for impromptu collaboration in pervasive computing, Proceedings of the 2007 ACM symposium on Applied computing, March 11-15, 2007, Seoul, Korea
	Sastry Duri , Marco Gruteser , Xuan Liu , Paul Moskowitz , Ronald Perez , Moninder Singh , Jung-Mu Tang, Framework for security and privacy in automotive telematics, Proceedings of the 2nd international workshop on Mobile commerce, September 28-28, 2002, Atlanta, Georgia, USA
	Bechara Al Bouna , Richard Chbeir, MC^SE: a multimedia context-based security engine, Proceedings of the 11th international conference on Extending database technology: Advances in database technology, March 25-29, 2008, Nantes, France
	Laurel Swan , Alex S. Taylor , Richard Harper, Making place for clutter and other ideas of home, ACM Transactions on Computer-Human Interaction (TOCHI), v.15 n.2, p.1-24, July 2008
	Devdatta Kulkarni , Anand Tripathi, Context-aware role-based access control in pervasive computing systems, Proceedings of the 13th ACM symposium on Access control models and technologies, June 11-13, 2008, Estes Park, CO, USA
	Maria Luisa Damiani , Elisa Bertino , Claudio Silvestri, Spatial Domains for the Administration of Location-based Access Control Policies, Journal of Network and Systems Management, v.16 n.3, p.277-302, September 2008
	Sheikh Iqbal Ahamed , Munirul M. Haque , Nilothpal Talukder, Service sharing with trust in pervasive environment: now it's time to break the jinx, Proceedings of the 2008 ACM symposium on Applied computing, March 16-20, 2008, Fortaleza, Ceara, Brazil
	Xinwen Zhang , Masayuki Nakae , Michael J. Covington , Ravi Sandhu, Toward a Usage-Based Security Framework for Collaborative Computing Systems, ACM Transactions on Information and System Security (TISSEC), v.11 n.1, p.1-36, February 2008
	Adam Muhlbauer , Reihaneh Safavi-Naini , Farzad Salim , Nicholas Paul Sheppard , Martin Surminen, Location constraints in digital rights management, Computer Communications, v.31 n.6, p.1173-1180, April, 2008
	M. L. Damiani , E. Bertino , P. Perlasca, Data security in location-aware applications: an approach based on RBAC, International Journal of Information and Computer Security, v.1 n.1/2, p.5-38, January 2007
	Bechara Al Bouna , Richard Chbeir , Stefania Marrara, Enforcing role based access control model with multimedia signatures, Journal of Systems Architecture: the EUROMICRO Journal, v.55 n.4, p.264-274, April, 2009
	Sweta Sneha , Upkar Varshney, Enabling ubiquitous patient monitoring: Model, decision protocols, opportunities and challenges, Decision Support Systems, v.46 n.3, p.606-619, February, 2009
	Elisa Bertino , Bhavani Thuraisingham , Michael Gertz , Maria Luisa Damiani, Security and privacy for geospatial data: concepts and research directions, Proceedings of the SIGSPATIAL ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS, November 04-04, 2008, Irvine, California
	Manachai Toahchoodee , Indrakshi Ray , Kyriakos Anastasakis , Geri Georg , Behzad Bordbar, Ensuring spatio-temporal access control for real-world applications, Proceedings of the 14th ACM symposium on Access control models and technologies, June 03-05, 2009, Stresa, Italy
	Chunwang Gao , Zhen Yu , Yawen Wei , Steve Russell , Yong Guan, A statistical indoor localization method for supporting location-based access control, Proceedings of the 5th International ICST Conference on Heterogeneous Networking for Quality, Reliability, Security and Robustness, July 28-31, 2008, Hong Kong