Access Control Policy Management Framework based on RBAC in OSGi Service Platform

Cho, Eunae; Moon, Chang-Joo; Park, Dae-ha; Baik, Doo-Kwon

doi:10.1109/cit.2006.31

Cited by 9 publications

(7 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To address such shortcomings, several works have proposed the enhanced access control mechanisms for the OSGI service platform [3, 4, 5, and 6]. The works in [3,4] propose the RBAC-based authorization policies for OSGi service platform. These works compare the RBAC model with other access control models and describe the advantages of using RBAC in the home network environment.…”

Section: Access Control Using Aopmentioning

confidence: 99%

Extended Authorization Mechanism in OSGi

Kim

Lee

et al. 2010

2010 International Conference on Information Science and Applications

View full text Add to dashboard Cite

As ubiquitous computing technology evolves, open API that is a solution to interconnect heterogeneous devices and services in a more fluid manner has emerged. Among open API solutions, OSGi is a Java-based service platform that is widely used in the service gateway of home network. In home network environments, the user authentication and authorization associated user's information and usability may be important security issue. Although the current OSGi support RBAC-based authorization, it does not support various facilities in the RBAC model. The access control mechanisms for OSGi proposed so far focus on supporting the RBAC conventions with the basic form of roleuser-permission mappings. However, these are difficult to support efficient access control. We propose the extended access control mechanism that includes the concepts of relative role and delegate class. We explain the proposed access control mechanism with an example of developing a simple set-top box control service.

show abstract

Section: Access Control Using Aopmentioning

confidence: 99%

Extended Authorization Mechanism in OSGi

Kim

Lee

et al. 2010

2010 International Conference on Information Science and Applications

View full text Add to dashboard Cite

show abstract

“…To address such shortcomings, several works have proposed the enhanced access control mechanisms for the OSGi service platform [3][4][5] and [6]. The works in [3,4] pro-pose the RBAC-based authorization policies for OSGi service platform. These works compare the RBAC model with other access control models and describe the advantages of using RBAC in the home network environment.…”

Section: Related Workmentioning

confidence: 99%

“…To address such shortcomings, several works have proposed the enhanced access control mechanisms for the OSGi platform [4][5][6][7]. However, these suggestions are still limited to applying the traditional RBAC conventions to OSGi platform.…”

Section: Introductionmentioning

confidence: 99%

Flexible authorization in home network environments

et al. 2010

View full text Add to dashboard Cite

In home network environments, OSGi platform plays a major role as the service gateway to access into home appliances. It is important to provide appropriate services as well as security mechanisms to protect confidential or sensitive information and devices. Authorization is especially important when controlling the access of different users. OSGi platform supports the role based access control but it does not support various facilities in the RBAC model. To address such shortcomings, several works have proposed the enhanced access control mechanisms for the OSGi service platform. However, these are still limited to applying the traditional RBAC conventions to OSGi platform. This paper extends the existing authorization mechanism of OSGi platform to address its limitations for dynamic deployments. By adding the relative role concept and activating the access control using the delegation model, proposed mechanism enables a diverse and outstanding access control. We implement the proposed mechanism using aspectJ and illustrate how to develop a bundle including access control logic.

show abstract

“…To the best of our knowledge, there is already some previous work on the studies of access control models for home network environment [4,5,6]. These existing access control mechanisms, however, always preserve all the access control policies in the home gateway or the distributed household appliances, and thus they can be broadly generalized into two types of models, namely, the home gateway model and the distributed household appliances model.…”

Section: Related Workmentioning

confidence: 99%

An effective access control mechanism in home network environment based on SPKI certificates

Song

Son

et al. 2010

2010 IEEE International Conference on Information Theory and Information Security

Self Cite

View full text Add to dashboard Cite

In home network environment, security is one of the most important issues that need to be addressed because the services provided by all kinds of household appliances are likely related with the privacy information of the residents. Although several access control mechanisms have been proposed in the last few years, these existing models always preserve all the access control policies in the home gateway or the distributed household appliances, and all of them have conspicuous defects. In this paper, we divide access control policies into general policies and privacy policies according to different security requirements of the residents. With the help of SPKI certificates theory, we demonstrate that our model is an effective access control mechanism by providing two types of access control policies with different security schemes.

show abstract

Access Control Policy Management Framework based on RBAC in OSGi Service Platform

Cited by 9 publications

References 6 publications

Extended Authorization Mechanism in OSGi

Extended Authorization Mechanism in OSGi

Flexible authorization in home network environments

An effective access control mechanism in home network environment based on SPKI certificates

Contact Info

Product

Resources

About