Ubiquitous Authorization Scheme Based on Device Profile
نویسندگان
چکیده
The range of devices that are capable of connecting to data networks has been on a rise in recent times. From the perspective of an administrator, controlling access to data networks, via these devices, usually includes the creation of separate login credentials. This leads to an administrative nightmare, from both the user and administrator’s point of view. This paper proposes a novel approach to this problem and offers a single-sign-on system, where the user’s authorisation is based on the login credentials of the user, and the profile of the device the user is using. An instance of this design is presented with SESAME, to demonstrate the usefulness of the design, and also practicality for implementation.
منابع مشابه
Context-aware Authorization in Highly Dynamic Environments
Highly dynamic computing environments, like ubiquitous and pervasive computing environments, require frequent adaptation of applications. Context is a key to adapt suiting user needs. On the other hand, standard access control trusts users once they have authenticated, despite the fact that they may reach unauthorized contexts. We analyse how taking into account dynamic information like context...
متن کاملSingle Sign-On Scheme based on XML for Media Device Control in the Ubiquitous Home Network Running the OSGi
A single sign-on scheme is proposed in which a user offers his credential information to a home network running the OSGi (Open Service Gateway Initiative) service platform, to obtain user authentication and control a remote device through a mobile device using this authentication scheme, based on SAML (Security Assertion Markup Language). Single signon profile is defined to overcome the handica...
متن کاملEnd-to-end security scheme for mobility enabled healthcare Internet of Things
We propose an end-to-end security scheme for mobility enabled healthcare Internet of Things (IoT). The proposed scheme consists of (i) a secure and efficient end-user authentication and authorization architecture based on the certificate based DTLS handshake, (ii) secure end-to-end communication based on session resumption, and (iii) robust mobility based on interconnected smart gateways. The s...
متن کاملExpressing Privacy Policies Using Authorization Views
In this paper, we design a rule-based privacy policy for the RFID Ecosystem, an RFID-based ubiquitous computing system. We start from the physical access control (PAC) rule (Kriplean et al., IEEE Pervasive Computing 2007) that provides a default level of privacy but constrains the possible set of applications. We extend it by using principled ways of defining other access control rules that ret...
متن کاملDevelopment of Transactions Authorization Protocol for Ubiquitous Commerce Systems
Transparency in transactions can only be achieved through a controlled coordination of the real and cyber worlds. The success of Ubiquitous Commerce Systems (UCS) relies on the convergence of both worlds. The mobile devices are ubiquitous; they can be used anytime and anywhere. This poses a lot of security challenges in a ubiquitous society where business transactions will be involved. With the...
متن کامل