research-article

RBAC-based access control for privacy protection in pervasive environments

Authors:

Kyu II Kim,

Won Gil Choi,

Eun Ju Lee,

Ung Mo KimAuthors Info & Claims

ICUIMC '09: Proceedings of the 3rd International Conference on Ubiquitous Information Management and Communication

Pages 255 - 259

https://doi.org/10.1145/1516241.1516285

Published: 15 February 2009 Publication History

Get Access

Abstract

Pervasive environment is a post-desktop model of human-computer interaction in which information processing has been thoroughly integrated into everyday object and activities. In there environment access control is a critical issue, with many aspects relating to the establishment, authorization and enforcement of policies that protect the resources from adversaries. Recently, many researches have been worked methods that have access to resources in ubiquitous applications. However they are inadequate to meet the requirement for privacy safeguard and dynamic changes. In this paper we propose how to protect sensitive data and present extended Role Based Access Control (RBAC) that respond to all the requirements for privacy control. We also show how proposed model preserves safety properties in spite of dynamic changes to access control permission.

References

[1]

Zhang, G., Parashar, M. Context-Aware Dynamic Access Control for Pervasive Application. In Proceeding of the Communication Networks and Distributed Systems Modeling and Simulation Conference. Society for Modeling and Simulation International, 2004, pp. 21--30

Google Scholar

[2]

Matthew J. M, Mustaque Ahamad. Generalized Role Based Access Control, Distributed Computing Systems, Proceeding of the IEEE, 21^st International Conference. 2001, pp. 391--398

Digital Library

Google Scholar

[3]

Rakesk Agrawal, Jerry Kiernan, Ramakrishman Srikant, and Yirong Xu. Hippocratic Databases. In Proceedings of the 28^th International Conference on Very Large Databases (VLDB), 2002

Digital Library

Google Scholar

[4]

Adam N. R., Atluri V. Bertino E., Ferrari E, A Content-Based Authorization Model for Digital Libraires. IEEE Transactions on Knowledge Data Engineering, Vol.14 No.2 March 2002, pp 103--112

Digital Library

Google Scholar

[5]

M. Weiser, Scientific America. The Computer for the 21^st Century. Sept. 94--104 (1991); reprinted in IEEE Pervasive Computing. March 2002, pp. 19--25

Google Scholar

[6]

Evi Syukur, Seng Wai Loke., Peter Stanski, A Policy Based Framework for Context Aware Ubiquitous Services, LNCS, vol. 3207, pp. 346--355, Springer, Heidelberg 2006

Google Scholar

[7]

Sandhu R. S, Cynek E. J, Fensteink H. L, Youmank C. E, Role-Based Access Control Model, IEEE Computer, Vol. 29, No.2, February 1996

Digital Library

Google Scholar

[8]

Gustavo H. M. B Motta, Sergio S. Furuie. A Contextual Role-Based Access Control Authorization Model for Electronic Patient Record, IEEE Transactions on Information Technology in Biomedicine Vol.7 No.3 2003, pp.202--207

Digital Library

Google Scholar

[9]

Bertino E., Sandhu R. Database Security-Concepts, Approaches, and Challenges, IEEE Transaction Vol.2, No.1 2005, pp. 2--19

Digital Library

Google Scholar

[10]

Roman M., Hess C., Cerqueira R., Ranganathan A, Campbell R. H. A middleware infrastructure for active spaces. IEEE Pervasive Computing Vol.1 issue4, October 2002, pp.74--83

Digital Library

Google Scholar

[11]

Coradi A., Montanari R., Tibaldi D. Context-based access control for ubiquitous service provisioning, Proceedings of the 28^th Annual Interantional Vol.1 2004, pp.444--451

Digital Library

Google Scholar

[12]

Thomas Y. C Woo and Simon S. Lam. Designing a Distributed Authorization Service. Proceeding of IEEE INFOCOM, March 1998

Google Scholar

[13]

Murata M., Tozawa A., Kudo. M. XML Access Control Using Static Analysis. Proceedings of the 10^th ACM conference on Computer and Communication security, 2003, pp. 73--84

Digital Library

Google Scholar

[14]

LeFevre K., Agrawal R., Ercegovac V., Ramakrishnan R., Xu Y., and DeWitt D. Limiting Disclosure in Hippocratic Databases, In Proceedings of the 30^th International Conference on Very Large Databases (VLDB), 2004

Digital Library

Google Scholar

Cited By

View all

Samaniego MDeters R(2023)Digital Twins and Blockchain for IoT ManagementProceedings of the 5th ACM International Symposium on Blockchain and Secure Critical Infrastructure10.1145/3594556.3594611(64-74)Online publication date: 10-Jul-2023
https://dl.acm.org/doi/10.1145/3594556.3594611
Embarak OCorne D(2011)Preventing the Privacy Problem via Integration of Users Preferences and Semantic StructureProceedings of the 2011 Developments in E-systems Engineering10.1109/DeSE.2011.48(425-430)Online publication date: 6-Dec-2011
https://dl.acm.org/doi/10.1109/DeSE.2011.48

Index Terms

RBAC-based access control for privacy protection in pervasive environments
1. Security and privacy
  1. Security services
    1. Access control
  2. Systems security
    1. Operating systems security

Recommendations

PBDM: a flexible delegation model in RBAC
SACMAT '03: Proceedings of the eighth ACM symposium on Access control models and technologies

Role-based access control (RBAC) is recognized as an efficient access control model for large organizations. Most organizations have some business rules related to access control policy. Delegation of authority is among these rules. RBDM0 and RDM2000 ...
A fine-grained, controllable, user-to-user delegation method in RBAC
SACMAT '05: Proceedings of the tenth ACM symposium on Access control models and technologies

This paper addresses the issues surrounding user-to-user delegation in RBAC. We show how delegations can be incorporated into the RBAC model in a simple and straightforward manner. A special feature of the model is that it allows fine-grained control ...
A generalized context-based access control model for pervasive environments
SPRINGL '09: Proceedings of the 2nd SIGSPATIAL ACM GIS 2009 International Workshop on Security and Privacy in GIS and LBS

Pervasive Computing Environments enable new opportunities for users to share and to access resources anytime and anywhere in a more natural way, making access control a critical issue. These heterogeneous and dynamic sensor-rich environments ...

Comments

Information & Contributors

Information

Published In

ICUIMC '09: Proceedings of the 3rd International Conference on Ubiquitous Information Management and Communication

February 2009

704 pages

ISBN:9781605584058

DOI:10.1145/1516241

General Chairs:
Won Kim
Sungkyunkwan University, Korea
,
Hyung Jin Choi
Sungkyunkwan University, Korea
,
Dongho Won
SungKyunkwan University, Korea

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 15 February 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

Foundation of Ubiquitous Computing and Networking Project (UCN)

Conference

ICUIMC '09

Sponsor:

SIGKDD

ICUIMC '09: The 3rd International Conference on Ubiquitous Information Management and Communication

January 15 - 16, 2009

Suwon, Korea

Acceptance Rates

Overall Acceptance Rate 251 of 941 submissions, 27%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
277
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)0

Reflects downloads up to 06 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Samaniego MDeters R(2023)Digital Twins and Blockchain for IoT ManagementProceedings of the 5th ACM International Symposium on Blockchain and Secure Critical Infrastructure10.1145/3594556.3594611(64-74)Online publication date: 10-Jul-2023
https://dl.acm.org/doi/10.1145/3594556.3594611
Embarak OCorne D(2011)Preventing the Privacy Problem via Integration of Users Preferences and Semantic StructureProceedings of the 2011 Developments in E-systems Engineering10.1109/DeSE.2011.48(425-430)Online publication date: 6-Dec-2011
https://dl.acm.org/doi/10.1109/DeSE.2011.48

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

PBDM: a flexible delegation model in RBAC

A fine-grained, controllable, user-to-user delegation method in RBAC

A generalized context-based access control model for pervasive environments

Comments

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Other Metrics

Article Metrics

Other Metrics

Cited By

Login options

Full Access

PDF

eReader

Abstract

References

Cited By

Index Terms

Recommendations

PBDM: a flexible delegation model in RBAC

A fine-grained, controllable, user-to-user delegation method in RBAC

A generalized context-based access control model for pervasive environments

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations