Access control for Active Spaces
Geetanjali Sampemane,Prasad Naldurg,Roy H. Campbell +2 more
- 09 Dec 2002
- pp 343-352
TL;DR: An access control system that automates the creation and enforcement of access control policies for different configurations of an Active Space, and explicitly recognizes different modes of cooperation between groups of users, and the dependence between physical and virtual aspects of security in Active Spaces.
read more
Abstract: Active Spaces are physical spaces augmented with heterogeneous computing and communication devices along with supporting software infrastructure. This integration facilitates collaboration between users, and promotes greater levels of interaction between users and devices. An Active Space can be configured for different types of applications at different times. We present an access control system that automates the creation and enforcement of access control policies for different configurations of an Active Space. Our system explicitly recognizes different modes of cooperation between groups of users, and the dependence between physical and virtual aspects of security in Active Spaces. Our model provides support for both discretionary and mandatory access control policies, and uses role-based access control techniques for easy administration of users and permissions. We dynamically assign permissions to user roles based on context information. We show how we can create dynamic protection domains. This allows administrators and application developers the ability to customize access control policies on a need-to-protect basis. We also provide a semi-formal specification and analysis of our model and show how we preserve safety properties in spite of dynamic changes to access control permissions.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Figures
Citations
Patent
Methods and systems for launching applications into existing isolation environments
Madhav Chinta,Sam Arun Raj +1 more
- 02 May 2009
TL;DR: In this paper, a run module identifies a profile associated with the requested application and queries an application delivery service to identify at least one isolation environment that corresponds to the profile, and issues a command to a launch module to launch the application into the first isolation environment.
272
A spatio-temporal role-based access control model
Indrakshi Ray,Manachai Toahchoodee +1 more
- 08 Jul 2007
TL;DR: This paper proposes a spatio-temporal access control model, based on the Role-Based Access Control (RBAC) model, that is suitable for pervasive computing applications and formalizes the model by enumerating the constraints.
•Journal Article
Towards security and privacy for pervasive computing
TL;DR: In this paper, the authors explore the challenges for building security and privacy into pervasive computing environments, describe their prototype implementation that addresses some of these issues, and propose some directions for future work.
171
Towards security and privacy for pervasive computing
Roy H. Campbell,Jalal Al-Muhtadi,Prasad Naldurg,Geetanjali Sampemane,M. Dennis Mickunas +4 more
- 08 Nov 2002
TL;DR: The challenges for building security and privacy into pervasive computing environments are explored, a prototype implementation that addresses some of these issues is described, and some directions for future work are proposed.
168
LRBAC: a location-aware role-based access control model
Indrakshi Ray,Mahendra Kumar,Lijun Yu +2 more
- 19 Dec 2006
TL;DR: In this paper, the role-based access control (RBAC) model is extended to incorporate the notion of location, which is suitable for applications consisting of static and dynamic objects where location of the subject and object must be considered before granting access.
149
References
Graph-Based Algorithms for Boolean Function Manipulation
TL;DR: In this paper, the authors present a data structure for representing Boolean functions and an associated set of manipulation algorithms, which have time complexity proportional to the sizes of the graphs being operated on, and hence are quite efficient as long as the graphs do not grow too large.
The Computer for the 21st Century
TL;DR: Consider writing, perhaps the first information technology: The ability to capture a symbolic representation of spoken language for long-term storage freed information from the limits of individual memory.
9.4K
Role-based access control models
TL;DR: Why RBAC is receiving renewed attention as a method of security administration and review is explained, a framework of four reference models developed to better understandRBAC is described, and the use of RBAC to manage itself is discussed.
6.1K
•Journal Article
The computer for the 21st century
TL;DR: In this article, the authors propose that specialized elements of hardware and software, connected by wires, radio waves and infrared, will soon be so ubiquitous that no-one will notice their presence.
5.9K
The anatomy of the grid: enabling scalable virtual organizations
Ian Foster
- 28 Aug 2001
TL;DR: The term "the Grid" was coined in the mid-1990s to denote a proposed distributed computing infrastructure for advanced science and engineering but the term has also been conflated, at least in popular perception, to embrace everything from advanced networking to artificial intelligence.