Spatial role-based access control model for wireless networks

Hansen, F.; Oleshchuk, Vladimir

doi:10.1109/vetecf.2003.1285394

Cited by 71 publications

(69 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Spatial SSD constraints (SSSD) furthermore imply that if a user is assigned to a role in one location, the user cannot be assigned to another role in this location if these two roles are conflicting [10]. In a similar way, Spatial DSD constraints (SDSD) ensure that constraints on which roles that can be enabled in the same user session or across user sessions can be enforced for a given location.…”

Section: Spatial Separation Of Duties Constraints In Geoxacmlmentioning

confidence: 99%

“…This discussion does not cover all RBAC models, but compares our solution to some of the well known traditional location based RBAC solutions. SRBAC is one of the earlier models of a spatial RBAC system [10,11], and it has been suggested to define an XACML-based location aware RBAC model based on SRBAC [1]. Our model has moved the location constraints into the Role and Permissions (PRMS) definitions instead of expressing location references as an explicit relationship between Roles-Locations and Locations-Operations as SR-BAC does.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Mobile Security with Location-Aware Role-Based Access Control

Ulltveit-Moe

Oleshchuk

2012

Security and Privacy in Mobile Information and Communication Systems

View full text Add to dashboard Cite

Abstract. This paper describes how location-aware Role-Based Access Control (RBAC) can be implemented on top of the Geographically eXtensible Access Control Markup Language (GeoXACML). It furthermore sketches how spatial separation of duty constraints (both static and dynamic) can be implemented using GeoXACML on top of the XACML RBAC profile. The solution uses physical addressing of geographical locations which facilitates easy deployment of authorisation profiles to the mobile device. Location-aware RBAC can be used to implement location dependent access control and also other security enhancing solutions on mobile devices, like location dependent device locking, firewall, intrusion prevention or payment anti-fraud systems.

show abstract

Section: Spatial Separation Of Duties Constraints In Geoxacmlmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Mobile Security with Location-Aware Role-Based Access Control

Ulltveit-Moe

Oleshchuk

2012

Security and Privacy in Mobile Information and Communication Systems

View full text Add to dashboard Cite

show abstract

“…Many authors have also proposed models for access control policies that include rules about location or other context information [24][25][26][27][28][29][30][31][32][33][34], and both of most prominent languages used for writing digital rights management licences -the Extensible Rights Markup Language ("XrML") [35] and the Open Digital Rights Language [36] -support clauses that constrain the use of a file to a particular location.…”

Section: Related Workmentioning

confidence: 99%

Location constraints in digital rights management

Muhlbauer

Salim

Sheppard

et al. 2008

Computer Communications

View full text Add to dashboard Cite

Digital rights management allows information owners to control the use and dissemination of electronic documents via a machinereadable licence. This paper describes the design and implementation of a system for creating and enforcing licences containing location constraints that can be used to restrict access to sensitive documents to a defined area. Documents can be loaded onto a portable device and used in the approved areas, but cannot be used if the device moves to another area. Our contribution includes a taxonomy for access control in the presence of requests to perform non-instantaneous controlled actions.

show abstract

“…In general, the context can be either narrowly defined, and thus consists of a unique external variable or a limited number of external variables, such as time [3], or be general, and thus accounts for an arbitrary number of external variables [4]. To our knowledge the first model dealing with the spatial context is by Hansen et al [5]. In such model the availability of roles and permissions may depend on users' location.…”

Section: Location-based Access Control Modelsmentioning

confidence: 99%

Spatial Domains for the Administration of Location-based Access Control Policies

2008

View full text Add to dashboard Cite

In the last few years there has been an increasing interest for a novel category of access control models known as location-based or spatially-aware role-based access control (RBAC) models. Those models advance classical RBAC models in that they regulate the access to sensitive resources based on the position of mobile users. An issue that has not yet been investigated is how to administer spatially-aware access control policies. In this paper we introduce GEO-RBAC Admin, the administration model for the location-based GEO-RBAC model. We discuss the concepts underlying such administrative model and present a language for the specification of GEO-RBAC policies.

show abstract

Spatial role-based access control model for wireless networks

Cited by 71 publications

References 5 publications

Mobile Security with Location-Aware Role-Based Access Control

Mobile Security with Location-Aware Role-Based Access Control

Location constraints in digital rights management

Spatial Domains for the Administration of Location-based Access Control Policies

Contact Info

Product

Resources

About