Adaptive Secure Access to Remote Services in Mobile Environments

Lufei, Hanping; Shi, Wei; Chaudhary, Vipin

doi:10.1109/tsc.2008.4

Cited by 9 publications

(3 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition to context, the quickly expanding heterogeneity of devices participating in a ubicomp environment, as well as its dynamics, can also be regarded as novel to ubicomp. To ensure interaction between such devices, a number of papers propose pairing mechanisms for devices without prior security associations (Miettinen et al, 2014), dynamic trust computation (Das and Islam, 2012), adaptive access control policies with respect to diverse environmental requirements (Lufei et al, 2008), as well as proximity-based access control mechanisms (Agudo et al, 2013;Rasmussen et al, 2009). Therefore, one can conclude that the traditional security goals of distributed computing remain important in ubicomp, as well (also backed up by our findings in Section 3.4).…”

Section: Rq23 -Security Goalsmentioning

confidence: 99%

A decade of security research in ubiquitous computing: results of a systematic literature review

Kušen

Strembeck

2016

IJPCC

View full text Add to dashboard Cite

In an endeavor to reach the vision of ubiquitous computing where users are able to use pervasive services without spatial and temporal constraints, we are witnessing a fast growing number of mobile and sensor-enhanced devices becoming available. However, in order to take full advantage of the numerous benefits offered by novel mobile devices and services, we must address the related security issues. In this paper, we present results of a systematic literature review (SLR) on security-related topics in ubiquitous computing environments. In our study, we found 5165 scientific contributions published between 2003 and 2015. We applied a systematic procedure to identify the threats, vulnerabilities, attacks, as well as corresponding defense mechanisms that are discussed in those publications. While this paper mainly discusses the results of our study, the corresponding SLR protocol which provides all details of the SLR is also publicly available for download.

show abstract

Section: Rq23 -Security Goalsmentioning

confidence: 99%

A decade of security research in ubiquitous computing: results of a systematic literature review

Kušen

Strembeck

2016

IJPCC

View full text Add to dashboard Cite

show abstract

“…Montagut et al (2008) addressed the security features on executing distributed web services. Lufei et al (2008) proposed an adaptive secure access mechanism as well as an adaptive function invocation module in mobile environments. Phan et al(2008) discussed a similarity-based SOAP multicast protocol to reduce bandwidth and latency in web services with high-volume transactions.…”

Section: Web Service Composition: Background Literaturementioning

confidence: 99%

Scenario Analysis of Web Service Composition based on Multi-Criteria Mathematical Goal Programming

Cui¹,

Kumara

Lee

2011

Service Science

View full text Add to dashboard Cite

his paper addresses the web service composition problem considering multi-criteria regarding quality of services (QoS). Three different scenarios of multi-criteria mathematical programming models are explored under the framework of network based analysis in web service composition. This work takes care of the issues pertaining to inputs and outputs matching of web services and Quality-of-Service (QoS) at the same time. The multi-criteria programming models are explored to select the desirable service composition in a variety of categories in accordance with customers' preferences in three different scenarios: (1) Optimal, (2) Compromised optimal, and (3) Acceptable. This set of multi-criteria models have both advantages and disadvantages comparing with each other, and can be used as different solvers in the network based service composition framework. The proposed regular multi-criteria programming (MCP) models are used in Scenario (1): Optimal. The proposed multi-criteria goal programming for optimal composition (MCGPO) and multi-criteria goal programming for non-optimal solution (MCGPN) models are designed for Scenarios (2):Compromised optimal and (3)Acceptable respectively. And they can find a compromised composition based on the trade-off of customer's preference on the QoS goals in case that the optimal composition satisfying both functional and QoS constraints does not exist in the network.

show abstract

“…Also, the information flows taking place in the smaller part is analyzed. (Lufei, 2008) propose a secure access mechanism for remote services. In order to convey the web service security requirements such as specific encryption algorithms, an adaptive function module is introduced.…”

Section: Related Workmentioning

confidence: 99%

Behavioral Attestation for Web Services Based Business Processes

Alam¹,

Nauman²,

Zhang

et al. 2010

International Journal of Web Services Research

View full text Add to dashboard Cite

Service Oriented Architecture (SOA) is an architectural paradigm that enables dynamic composition of heterogeneous, independent, multi-vendor business services. A prerequisite for such inter-organizational workflows is the establishment of trustworthiness, which is mostly achieved through non-technical measures, such as legislation, and/or social consent that businesses or organizations pledge themselves to adhere. A business process can only be trustworthy if the behavior of all services in it is trustworthy. Trusted Computing Group (TCG) has defined an open set of specifications for the establishment of trustworthiness through a hardware root-of-trust. This paper has three objectives: firstly, the behavior of individual services in a business process is formally specified. Secondly, to overcome the inherent weaknesses of trust management through software alone, a hardware root of-trust devised by the TCG, is used for the measurement of the behavior of individual services in a business process. Finally, a verification mechanism is detailed through which the trustworthiness of a business process can be verified.

show abstract

Adaptive Secure Access to Remote Services in Mobile Environments

Cited by 9 publications

References 31 publications

A decade of security research in ubiquitous computing: results of a systematic literature review

A decade of security research in ubiquitous computing: results of a systematic literature review

Scenario Analysis of Web Service Composition based on Multi-Criteria Mathematical Goal Programming

Behavioral Attestation for Web Services Based Business Processes

Contact Info

Product

Resources

About