Dynamic access control policy based on RBAC for ubiquitous applications

Young Gab Kim, Sungdeok Cha

Research output: Contribution to journalArticle

2 Citations (Scopus)

Abstract

As ubiquitous computing technology evolves, a user can access information anytime and anywhere via personal portable devices. Therefore, unlike traditional access control approaches, access control decisions should take into consideration the context information of the user such as location, time, and system resources. As a result, a fine-grained access control mechanism that dynamically changes the privileges of a user based on the context information is required in a ubiquitous environment. In this paper, we propose a dynamic access control policy based on the RBAC (D-RBAC), which dynamically grants and adapts permissions to the users. The D-RBAC provides high level of abstraction of the access control for the ubiquitous applications, by using concepts of simple and composite context information (i.e., situation information).

Original languageEnglish
Pages (from-to)7175-7190
Number of pages16
JournalInformation (Japan)
Volume16
Issue number9 B
Publication statusPublished - 2013 Sep 1

Fingerprint

Access control
Ubiquitous computing
Composite materials

Keywords

  • Access control
  • Access control decision policy
  • Activation of role
  • RBAC

ASJC Scopus subject areas

  • General

Cite this

Dynamic access control policy based on RBAC for ubiquitous applications. / Kim, Young Gab; Cha, Sungdeok.

In: Information (Japan), Vol. 16, No. 9 B, 01.09.2013, p. 7175-7190.

Research output: Contribution to journalArticle

@article{397026ad80e34b559e3e8d7f8864f5d3,
title = "Dynamic access control policy based on RBAC for ubiquitous applications",
abstract = "As ubiquitous computing technology evolves, a user can access information anytime and anywhere via personal portable devices. Therefore, unlike traditional access control approaches, access control decisions should take into consideration the context information of the user such as location, time, and system resources. As a result, a fine-grained access control mechanism that dynamically changes the privileges of a user based on the context information is required in a ubiquitous environment. In this paper, we propose a dynamic access control policy based on the RBAC (D-RBAC), which dynamically grants and adapts permissions to the users. The D-RBAC provides high level of abstraction of the access control for the ubiquitous applications, by using concepts of simple and composite context information (i.e., situation information).",
keywords = "Access control, Access control decision policy, Activation of role, RBAC",
author = "Kim, {Young Gab} and Sungdeok Cha",
year = "2013",
month = "9",
day = "1",
language = "English",
volume = "16",
pages = "7175--7190",
journal = "Information (Japan)",
issn = "1343-4500",
publisher = "International Information Institute",
number = "9 B",

}

TY - JOUR

T1 - Dynamic access control policy based on RBAC for ubiquitous applications

AU - Kim, Young Gab

AU - Cha, Sungdeok

PY - 2013/9/1

Y1 - 2013/9/1

N2 - As ubiquitous computing technology evolves, a user can access information anytime and anywhere via personal portable devices. Therefore, unlike traditional access control approaches, access control decisions should take into consideration the context information of the user such as location, time, and system resources. As a result, a fine-grained access control mechanism that dynamically changes the privileges of a user based on the context information is required in a ubiquitous environment. In this paper, we propose a dynamic access control policy based on the RBAC (D-RBAC), which dynamically grants and adapts permissions to the users. The D-RBAC provides high level of abstraction of the access control for the ubiquitous applications, by using concepts of simple and composite context information (i.e., situation information).

AB - As ubiquitous computing technology evolves, a user can access information anytime and anywhere via personal portable devices. Therefore, unlike traditional access control approaches, access control decisions should take into consideration the context information of the user such as location, time, and system resources. As a result, a fine-grained access control mechanism that dynamically changes the privileges of a user based on the context information is required in a ubiquitous environment. In this paper, we propose a dynamic access control policy based on the RBAC (D-RBAC), which dynamically grants and adapts permissions to the users. The D-RBAC provides high level of abstraction of the access control for the ubiquitous applications, by using concepts of simple and composite context information (i.e., situation information).

KW - Access control

KW - Access control decision policy

KW - Activation of role

KW - RBAC

UR - http://www.scopus.com/inward/record.url?scp=84892170504&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84892170504&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:84892170504

VL - 16

SP - 7175

EP - 7190

JO - Information (Japan)

JF - Information (Japan)

SN - 1343-4500

IS - 9 B

ER -