DMCA
Secure Context-sensitive Authorization (2005)
Cached
Download Links
- [www.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.ists.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www.ists.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [www.cs.uiuc.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [www.ists.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.ists.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- [www.cs.dartmouth.edu]
- [katahdin.cs.dartmouth.edu]
- [www1.cs.dartmouth.edu]
- [cmc.cs.dartmouth.edu]
- DBLP
Other Repositories/Bibliography
| Venue: | Journal of Pervasive and Mobile Computing |
| Citations: | 35 - 6 self |
BibTeX
@ARTICLE{Minami05securecontext-sensitive,
author = {Kazuhiro Minami and David Kotz},
title = {Secure Context-sensitive Authorization},
journal = {Journal of Pervasive and Mobile Computing},
year = {2005},
volume = {1},
pages = {257--268}
}
Share
 |
 |
 |
 |
||
OpenURL
Abstract
There is a recent trend toward rule-based authorization systems to achieve flexible security policies. Also, new sensing technologies in pervasive computing make it possible to define context-sensitive rules, such as “allow database access only to staff who are currently located in the main office. ” However, these rules, or the facts that are needed to verify authority, often involve sensitive context information. This paper presents a secure context-sensitive authorization system that protects confidential information in facts or rules. Furthermore, our system allows multiple hosts in a distributed environment to perform the evaluation of an authorization query in a collaborative way; we do not need a universally trusted central host that maintains all the context information. The core of our approach is to decompose a proof for making an authorization decision into a set of sub-proofs produced on multiple different hosts, while preserving the integrity and confidentiality policies of the mutually untrusted principals operating these hosts. We prove the correctness of our algorithm. 1
Keyphrases
secure context-sensitive authorization authorization query context information context-sensitive rule main office secure context-sensitive authorization system confidential information authorization decision untrusted principal flexible security policy allow database access confidentiality policy recent trend sensitive context information multiple host trusted central host rule-based authorization system distributed environment multiple different host collaborative way
