A Semantic Context-Aware Access Control Framework for Secure Collaborations in Pervasive Computing Environments

Toninelli, Alessandra; Montanari, Rebecca; Kagal, Lalana; Lassila, O.

doi:10.1007/11926078_34

Cited by 116 publications

(75 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…On the contrary, in loosely-coupled solutions, rule-based and ontological reasoning are executed separately. For instance, in [20,21,22,35,36] the interaction between ontological and rule-based reasoning is given by the possibility to define rules whose preconditions involve ontology-based context data derived by ontological reasoning.…”

Section: Loosely-versus Tightly-coupled Approachesmentioning

confidence: 99%

OWL 2 modeling and reasoning with complex human activities

Riboni

Bettini

2011

Pervasive and Mobile Computing

134

View full text Add to dashboard Cite

In recent years, there has been a growing interest in the adoption of ontologies and ontological reasoning to automatically recognize complex context data such as human activities. In particular, the Web Ontology Language (OWL) emerged as the language of choice, being a standard for the Semantic Web, and supported by a number of tools for knowledge engineering and reasoning. However, the limitations of OWL 1 in terms of expressiveness have been recognized in various fields, and important research e↵orts have been made to extend the language while preserving decidability of its OWL 1 DL fragment. The result of such work is OWL 2. In this paper we investigate the use of OWL 2 for modeling complex activities and reasoning with them. We show that the new language constructors of OWL 2 overcome the main limitations of OWL 1 for the representation of activities; OWL 2 axioms can be used to represent certain rules and rule-based reasoning previously demanded to hybrid approaches, with the advantage of having a unique semantics, avoiding potential inconsistencies. Then, we propose a system architecture showing the integration of a novel OWL 2 activity ontology and reasoning modules with distributed modules for sensor data aggregation and reasoning. The feasibility of our solution is shown by an extensive experimental evaluation with simulations of di↵erent intelligent environments.

show abstract

Section: Loosely-versus Tightly-coupled Approachesmentioning

confidence: 99%

OWL 2 modeling and reasoning with complex human activities

Riboni

Bettini

2011

Pervasive and Mobile Computing

134

View full text Add to dashboard Cite

show abstract

“…The GEO-RBAC model [5] also extends the RBAC model, where authorizations to access resources are based on the assigned role and location of the user. Toninelli et al [6] have proposed a contextaware access control framework that provides resource access permission based on such factors as resources availability, actor roles/identities and environmental conditions (such as time, other available resources, etc.). These existing research efforts either consider only specific types of context information or do not provide a classification of the relevant contextual factors for access control.…”

Section: Related Workmentioning

confidence: 99%

“…The traditional access control models (e.g., [3]) do not provide adequate functionality to adapt to and incorporate dynamically changing contexts. More recently, a number of research efforts (e.g., [4][5][6]) have attempted to design access control models that consider context information, focusing on time and location. In general, there are also other types of environmental factors or context information that need to be considered.…”

Section: Introductionmentioning

confidence: 99%

ICAF: A Context-Aware Framework for Access Control

Kayes

Han

Colman

2012

Information Security and Privacy

View full text Add to dashboard Cite

Abstract. Context-aware systems acquire and integrate multi-faceted knowledge about their environments in order to make decisions. A number of attempts to build frameworks for context-aware systems have been made, but these have not provided adequate support for context-aware access control. In this paper, we present a framework for context-aware access control and its prototype implementation. The framework includes a context model for classifying and capturing access control-oriented contextual information, a situation model for identifying and defining contextual conditions of concern, and a policy model for specifying context-aware access control policies.Keywords: Context-aware access control, context modeling, context reasoning, situation modeling, access control policy IntroductionComputer systems have shifted from fixed desktop environments to pervasive computing environments in which, as Weiser [1] describes, resources or services should be available for the life of everyday users in an 'anywhere, anytime' fashion even when they are on the move. A key challenge in such pervasive environments is the control over access to these resources or services. Unlike traditional access control, access control decisions in pervasive environments need to take into account the relevant contextual information such as time and location that reflect the dynamically changing conditions of the environments [2].Access control is a mechanism to determine whether a request to access resources in a system should be permitted or denied. The traditional access control models (e.g., [3]) do not provide adequate functionality to adapt to and incorporate dynamically changing contexts. More recently, a number of research efforts (e.g., [4][5][6]) have attempted to design access control models that consider context information, focusing on time and location. In general, there are also other types of environmental factors or context information that need to be considered. When considering whether or not a doctor can access a patient's medical records, for example, the purpose of the request, the health condition of the patient and the relationship between the doctor and the patient (treating physician or not) are all possible additional factors that need to be considered beyond the time and location of the particular request.

show abstract

“…Using Semantics Web technologies as means for describing and reasoning about privacy policies in different domains including pervasive environments are becoming common [41,20]. Relevant to our privacy policy language is the semantic context-aware policy model based on Description Logic (DL) ontologies and Logic Programming (LP) rules in [41].…”

Section: Related Workmentioning

confidence: 99%

Middleware for Pervasive Spaces: Balancing Privacy and Utility

et al. 2009

View full text Add to dashboard Cite

Abstract. Middleware for pervasive spaces has to meet conflicting requirements. It has to both maximize the utility of the information exposed and ensure that this information does not violate users' privacy. In order to resolve these conflicts, we propose a framework grounded in utility theory where users dynamically control the level of disclosure about their information. We begin by providing appropriate definitions of privacy and utility for the type of applications that would support collaborative work in an office environment-current definitions of privacy and anonymity do not apply in this context. We propose a distributed solution that, given a user's background knowledge, maximizes the utility of the information being disclosed to information recipients while meeting the privacy requirements of users. We implement our solution in the context of a real pervasive space middleware and provide experiments that demonstrate its behaviour.

show abstract

A Semantic Context-Aware Access Control Framework for Secure Collaborations in Pervasive Computing Environments

Cited by 116 publications

References 9 publications

OWL 2 modeling and reasoning with complex human activities

OWL 2 modeling and reasoning with complex human activities

ICAF: A Context-Aware Framework for Access Control

Middleware for Pervasive Spaces: Balancing Privacy and Utility

Contact Info

Product

Resources

About