New Trends In Computer Networks

YOUNG-CHUL SHIM
Hongik University, Department of Computer Engineering 72-1 Sangsudong, Mapogu, Seoul, Korea
Context-awareness and security are critical issues in ubiquitous computing. In this paper we present a framework for context-aware authorization in ubiquitous computing environments. We present an architecture consisting of authorization infrastructure and context infrastructure. The authorization infrastructure makes decision to grant access rights based on both contexts and policies specified with a flexible language. The context infrastructure provides contexts at various levels of abstraction and enables context users to acquire contexts by submitting a query or using an event notification mechanism. The policy specification language allows one to authorize, prohibit, delegate, and revoke access rights. It also has constructs to package policies, resolve conflicts among policies, and specify the interaction with the context infrastructure.
In ubiquitous computing environments nearly everything is connected to the network in order to provide service and information on anything, anywhere, anytime. This poses a serous security issues and the success of ubiquitous computing environments depends on our ability to secure them. We have to ensure that access to service and information is permitted only to authorized users. Moreover in many cases the decision to grant access rights can be dependent on contexts such as location, time, etc.
In this paper we present a framework for context-aware authorization in ubiquitous computing environments. We present an infrastructure for context-aware authorization that consists of an authorization infrastructure and a context infrastructure. The authorization infrastructure allows the enforcement of access control policies based on...