Secure information sharing enabled by Trusted Computing and PEI models

Sandhu, Ravi; Ranganathan, Kumar; Zhang, Xinwen

doi:10.1145/1128817.1128820

Cited by 67 publications

(50 citation statements)

References 36 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [4] the author suggested a robust authentication user portal framework which incorporated user's data to meet the dynamic environmental data changes. It proved to be a very responsive framework and came with dynamic policy handling system.…”

Section: Literature Survey and Related Workmentioning

confidence: 99%

A Survey Paper on Location Based Device Management Policy Framework for Smart Phone Users

2016

IJSR

View full text Add to dashboard Cite

Smart Phone Apps have numerous sources to access the sensitive data and vital resources within the user mobile phone. This vital data can be a threat for the user from the malicious apps which use your sensitive data for numerous purpose like privacy leakage or security threat. For Example: A mischievous app recording your private business data or an unwanted app capturing your personal data can lead it to a security threat. So the main cause of this situation starts from that the android phone user has no control over his own device which leads to no control over his own data. Once the mischievous app has been granted with its access privileges, the android user simply loses control over all his sensitive information. However whether the granted access should work at any specific context or region can be handled by the device user by disabling the permissions or simply by revoking them. So in this paper we present you Location based policy management framework for smart phone user which helps you to set your own user policies at a given context/region where the user demands that none of the misleading apps should access his sensitive data. We have performed several test at different regions with different user policies to check if they work accurately.

show abstract

Section: Literature Survey and Related Workmentioning

confidence: 99%

A Survey Paper on Location Based Device Management Policy Framework for Smart Phone Users

2016

IJSR

View full text Add to dashboard Cite

show abstract

“…Sandhu et al [20] defined a family of Policy, Enforcement and Implementation (PEI) frameworks. TC is used to seal the decryption keys for the data into trusted VMs.…”

Section: Related Workmentioning

confidence: 99%

PAES: Policy-Based Authority Evaluation Scheme

Scalavino

Gowadia

Lupu

2009

Data and Applications Security XXIII

View full text Add to dashboard Cite

Abstract. Enterprise Rights Management (ERM) systems aim to protect disseminated data even after it has been sent to remote locations. Existing systems are based on common components, have similar functionalities and often have two shortcomings: a centralised architecture and a lack of concern for the trust and privacy of data recipients. To access the data, recipients must present their credentials to a policy evaluation authority, which they cannot choose and may not trust. Furthermore, recipients may be unable to access the data if their connection is intermittent or if they are off-line. To address these limitations, we propose PAES: a Policy-based Authority Evaluation Scheme, which combines data protection with a distributed policy evaluation protocol. The result allows us to implement the sticky policies paradigm in combination with trust management techniques. This permits distributing policy evaluation over a flexible set of authorities, simultaneously increasing the resilience of policy enforcement.

show abstract

“…Over the years, research on information security has focused on controlling the use of information resource through various models that have been proposed; from traditional access control, with its derivatives such as MAC, DAC, RBAC to TM and DRM. [1][2][3][4][5][6][7][8][9][10]Access control has been a key component of security solution to supporting finegrained articulated protection for shared data and resources by known users in a closed environment in the past. Trust management has worked on traditional access control by considering unknown users with regards to their credentials.…”

Section: Introductionmentioning

confidence: 99%

Usage control: a solution to access control in a distributed- network-connected environment

Ghann¹,

Wang²,

Zhou³

2013

Proceedings of the 2nd International Conference on Computer Science and Electronics Engineering (ICCSEE 2013)

View full text Add to dashboard Cite

Abstract-Computer and information technology has evaded our every aspect of life. Information technology is seen in all aspect of the individual from banking and investing to shopping and communicating through the use of the internet services such as emails and chat rooms. Organizations and industries also utilize computer and information technology to collect information on individuals leading to the creation of warehouse of databases that enable them to achieve their objectives. In a distributed network environment today, information security is a very important issue in ensuring a safe computing environment.

show abstract

Secure information sharing enabled by Trusted Computing and PEI models

Cited by 67 publications

References 36 publications

A Survey Paper on Location Based Device Management Policy Framework for Smart Phone Users

A Survey Paper on Location Based Device Management Policy Framework for Smart Phone Users

PAES: Policy-Based Authority Evaluation Scheme

Usage control: a solution to access control in a distributed- network-connected environment

Contact Info

Product

Resources

About