Security Policy Integration and Conflict Reconciliation for Collaborations among Organizations in Ubiquitous Computing Environments

Authors:
Stephen S. Yau;Zhaoji Chen
Affiliations:
Department of Computer Science and Engineering School of Computing and Informatics, Arizona State University, Tempe, USA AZ 85287-8809;Department of Computer Science and Engineering School of Computing and Informatics, Arizona State University, Tempe, USA AZ 85287-8809
Venue:
UIC '08 Proceedings of the 5th international conference on Ubiquitous Intelligence and Computing
Year:
2008

Citing 7
Cited 3

Conflicts in Policy-Based Distributed Systems Management

IEEE Transactions on Software Engineering
Merging Heterogeneous Security Orderings

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
Dealing with Multi-policy Security in Large Open Distributed Systems

ESORICS '98 Proceedings of the 5th European Symposium on Research in Computer Security
Role-Based Access Control System for Web Services

CIT '04 Proceedings of the The Fourth International Conference on Computer and Information Technology
Policy Ratification

POLICY '05 Proceedings of the Sixth IEEE International Workshop on Policies for Distributed Systems and Networks
Support for situation awareness in trustworthy ubiquitous computing application software: Papers from COMPSAC 2004

Software—Practice & Experience
A framework for specifying and managing security requirements in collaborative systems

ATC'06 Proceedings of the Third international conference on Autonomic and Trusted Computing

Security privacy access control for policy integration and conflict reconciliation in health care organizations collaborations

Proceedings of the 11th International Conference on Information Integration and Web-based Applications & Services
Access control: what is required in business collaboration?

ADC '09 Proceedings of the Twentieth Australasian Conference on Australasian Database - Volume 92
Authorization in cross-border eHealth systems

Information Systems Frontiers

Quantified Score

Hi-index	0.00

Visualization

Abstract

The investigative capabilities and productivity of researchers and practitioners of various organizations can be greatly expanded with collaborations among these organizations in ubiquitous computing environments. However, in order to provide effective collaborations among organizations in ubiquitous computing environments, due to the heterogeneity and dynamic nature of the ubiquitous computing environments it is critical to generate an integrated security policy set to govern the interactions among collaborating organizations during the collaboration. Existing approaches in security policy integration and conflict analysis have focused on static policy analysis which cannot address the dynamic formation of collaborative groups in ubiquitous computing environments. In this paper, an approach is presented to security policy integration, including a similarity-based policy adaptation algorithm for changing collaborative groups and a negotiation-based policy generation protocol for the new resources generated by the collaboration as well as for conflict reconciliation. Our approach can be automated with user defined control variables, which can greatly improve the efficiency and make the system scalable with little human intervention.