Security Policy Synthesis in Mobile Systems

2015 IEEE World Congress on Services Pub Date : 2015-06-27 DOI:10.1109/SERVICES.2015.36

Peter Amthor, Winfried E. Kühnhauser

{"title":"Security Policy Synthesis in Mobile Systems","authors":"Peter Amthor, Winfried E. Kühnhauser","doi":"10.1109/SERVICES.2015.36","DOIUrl":null,"url":null,"abstract":"Contemporary mobile devices have become universal and versatile tools that increasingly are used in sensitive application scenarios. They inevitably carry confidential information such as passwords, encryption keys, mission-critical company data, or location information in combat areas. In order to meet sophisticated security requirements, recent technology focuses on policy-oriented approaches that allow for the definition and enforcement of rigorous and precise rules for protecting confidential information. State-of-the-art development of security policies is a critical process, because of the involved quality assurance measures, it is quite heavy-weighted and tends to antagonize the distinguished virtues of mobile devices for lightweight, spontaneous communication and cooperation. This paper presents an approach to support secure, mobile device based cooperation in temporary, sporadically and spontaneously fashioned cliques within open communication infrastructures. The approach is based upon light-weight security domains protected by security policies that are dynamically and automatically composed during group formation. Due to the volatile nature of such groups simplicity, adaptability, efficiency and compatibility with today's security policy implementation techniques have been a major design goal.","PeriodicalId":106002,"journal":{"name":"2015 IEEE World Congress on Services","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-06-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE World Congress on Services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SERVICES.2015.36","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Contemporary mobile devices have become universal and versatile tools that increasingly are used in sensitive application scenarios. They inevitably carry confidential information such as passwords, encryption keys, mission-critical company data, or location information in combat areas. In order to meet sophisticated security requirements, recent technology focuses on policy-oriented approaches that allow for the definition and enforcement of rigorous and precise rules for protecting confidential information. State-of-the-art development of security policies is a critical process, because of the involved quality assurance measures, it is quite heavy-weighted and tends to antagonize the distinguished virtues of mobile devices for lightweight, spontaneous communication and cooperation. This paper presents an approach to support secure, mobile device based cooperation in temporary, sporadically and spontaneously fashioned cliques within open communication infrastructures. The approach is based upon light-weight security domains protected by security policies that are dynamically and automatically composed during group formation. Due to the volatile nature of such groups simplicity, adaptability, efficiency and compatibility with today's security policy implementation techniques have been a major design goal.

查看原文本刊更多论文

移动系统中的安全策略综合

当代移动设备已经成为通用和通用的工具，越来越多地用于敏感的应用场景。它们不可避免地携带机密信息，如密码、加密密钥、关键任务连队数据或战斗区域的位置信息。为了满足复杂的安全需求，最近的技术侧重于面向策略的方法，这些方法允许定义和执行严格而精确的规则来保护机密信息。安全策略的最新发展是一个关键的过程，因为涉及到质量保证措施，它是相当沉重的，并倾向于对抗移动设备的轻量级，自发的通信和合作的杰出优点。本文提出了一种在开放通信基础设施内临时、零星和自发形成的集团中支持安全的、基于移动设备的合作的方法。该方法基于由安全策略保护的轻量级安全域，这些安全策略是在组形成过程中动态和自动组成的。由于此类组的易变特性，简单性、适应性、效率以及与当今安全策略实现技术的兼容性一直是主要的设计目标。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2015 IEEE World Congress on Services

自引率

0.00%

发文量