{"title":"Smart-M3平台的上下文感知访问控制模型","authors":"A. Kashevnik, N. Teslya","doi":"10.23919/FRUCT.2013.8124228","DOIUrl":null,"url":null,"abstract":"One of the main security problems of Smart-M3 platform is a lack of dynamic security management support. In particular, a new access control model for resource sharing is needed. The access control model should describe the current situation via a context. The paper proposes a model of the context-based access control for the information shared in a smart space based on the Smart-M3 platform. Micro virtualization mechanisms represented by virtual private smart spaces are the basis for the model, which is built on the combination of the role-based and attribute-based access control models. Roles are assigned dynamically based on the smart space participant's trust level. The role separation allows simplifying policies and makes them human-readable and easy to configure. The trust level calculation is based on the participant's context, which includes identification attributes; location; current date; device type, etc. Also, three kinds of security policy rules have been proposed. These rules are used to calculate the trust level, to assign roles based on the trust level, and to grant permissions to the smart space resources.","PeriodicalId":325801,"journal":{"name":"2013 13th Conference of Open Innovations Association (FRUCT)","volume":"23 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Context-aware access control model for Smart-M3 platform\",\"authors\":\"A. Kashevnik, N. Teslya\",\"doi\":\"10.23919/FRUCT.2013.8124228\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"One of the main security problems of Smart-M3 platform is a lack of dynamic security management support. In particular, a new access control model for resource sharing is needed. The access control model should describe the current situation via a context. The paper proposes a model of the context-based access control for the information shared in a smart space based on the Smart-M3 platform. Micro virtualization mechanisms represented by virtual private smart spaces are the basis for the model, which is built on the combination of the role-based and attribute-based access control models. Roles are assigned dynamically based on the smart space participant's trust level. The role separation allows simplifying policies and makes them human-readable and easy to configure. The trust level calculation is based on the participant's context, which includes identification attributes; location; current date; device type, etc. Also, three kinds of security policy rules have been proposed. These rules are used to calculate the trust level, to assign roles based on the trust level, and to grant permissions to the smart space resources.\",\"PeriodicalId\":325801,\"journal\":{\"name\":\"2013 13th Conference of Open Innovations Association (FRUCT)\",\"volume\":\"23 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-04-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2013 13th Conference of Open Innovations Association (FRUCT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.23919/FRUCT.2013.8124228\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 13th Conference of Open Innovations Association (FRUCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/FRUCT.2013.8124228","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Context-aware access control model for Smart-M3 platform
One of the main security problems of Smart-M3 platform is a lack of dynamic security management support. In particular, a new access control model for resource sharing is needed. The access control model should describe the current situation via a context. The paper proposes a model of the context-based access control for the information shared in a smart space based on the Smart-M3 platform. Micro virtualization mechanisms represented by virtual private smart spaces are the basis for the model, which is built on the combination of the role-based and attribute-based access control models. Roles are assigned dynamically based on the smart space participant's trust level. The role separation allows simplifying policies and makes them human-readable and easy to configure. The trust level calculation is based on the participant's context, which includes identification attributes; location; current date; device type, etc. Also, three kinds of security policy rules have been proposed. These rules are used to calculate the trust level, to assign roles based on the trust level, and to grant permissions to the smart space resources.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
