Sciweavers

MOBILITY
2009
ACM

Context-sensitive authorization in interaction patterns

14 years 5 months ago
Context-sensitive authorization in interaction patterns
Main requirement of recent computing environments, like mobile and then ubiquitous computing, is to adapt applications to context. On the other hand, access control generally trust users once they have authenticated, despite the fact that they may reach unauthorized situations. We analyse how dynamic information can be used to improve security in the authorization process, and what are the implications when applied to interaction patterns. We experiment and validate our approach using context as an authorization factor for eventing in Web service for device (like UPnP or DPWS). Categories and Subject Descriptors D.4.6 [Operating Systems]: Security and Protection—Access Control,Information flow controls; E.4 [Coding and Information Theory]: Formal Models of Communication General Terms Security, Design Keywords Context-awareness, access control, dynamic authorization, contextsensitive authorization
Vincent Hourdin, Jean-Yves Tigli, Stephane Lavirot
Added 23 Jul 2010
Updated 23 Jul 2010
Type Conference
Year 2009
Where MOBILITY
Authors Vincent Hourdin, Jean-Yves Tigli, Stephane Lavirotte, Gaëtan Rey, Michel Riveill
Comments (0)