Access control to information in pervasive computing environments

Authors:
Urs Hengartner;Peter Steenkiste
Affiliations:
Carnegie Mellon University;Carnegie Mellon University
Venue:
HOTOS'03 Proceedings of the 9th conference on Hot Topics in Operating Systems - Volume 9
Year:
2003

Citing 4
Cited 11

Project Aura: Toward Distraction-Free Pervasive Computing

IEEE Pervasive Computing
Modeling Privacy Control in Context-Aware Systems

IEEE Pervasive Computing
Trust-Based Security in Pervasive Computing Environments

Computer
Cerberus: A Context-Aware Security Scheme for Smart Spaces

PERCOM '03 Proceedings of the First IEEE International Conference on Pervasive Computing and Communications

Extending Context Models for Privacy in Pervasive Computing Environments

PERCOMW '05 Proceedings of the Third IEEE International Conference on Pervasive Computing and Communications Workshops
Secure context-sensitive authorization

Pervasive and Mobile Computing
Privacy-enhanced, attack-resilient access control in pervasive computing environments with optional context authentication capability

Mobile Networks and Applications
Can Ferris Bueller still have his day off? protecting privacy in the wireless era

HOTOS'07 Proceedings of the 11th USENIX workshop on Hot topics in operating systems
A Game-Theoretical Approach to Data-Privacy Protection from Context-Based Inference Attacks: A Location-Privacy Protection Case Study

SDM '08 Proceedings of the 5th VLDB workshop on Secure Data Management
Protecting user data in ubiquitous computing: towards trustworthy environments

PET'04 Proceedings of the 4th international conference on Privacy Enhancing Technologies
Secure identity management for pseudo-anonymous service access

SPC'05 Proceedings of the Second international conference on Security in Pervasive Computing
Preserving user location privacy in mobile data management infrastructures

PET'06 Proceedings of the 6th international conference on Privacy Enhancing Technologies
A collaborative privacy-enhanced alibi phone

GPC'06 Proceedings of the First international conference on Advances in Grid and Pervasive Computing
A privacy agent in context-aware ubiquitous computing environments

CMS'06 Proceedings of the 10th IFIP TC-6 TC-11 international conference on Communications and Multimedia Security
Capacity and Service CapServ Adaptive Trust Computation by Territory Formation in Ubiquitous Environment

International Journal of Advanced Pervasive and Ubiquitous Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Many types of information available in a pervasive computing environment, such as people location information, should be accessible only by a limited set of people. Some properties of the information raise unique challenges for the design of an access control mechanism: Information can emanate from more than one source, it might change its nature or granularity before reaching its final receiver, and it can flow through nodes administrated by different entities. We propose three design principles for the architecture of an access control mechanism: (1) extract pieces of information in raw data streams early, (2) define policies controlling access at the information level, and (3) exploit information relationships for access control. We describe an example architecture in which we apply these principles. We also report how our earlier work about adding access control to a people location service contributed to the more general access control architecture proposed here.