Towards an authentication middleware to support ubiquitous web access

Zhang, Nan; Chin, Jay; Rector, Alan L.; Goble, Carole; Li, Y.

doi:10.1109/cmpsac.2004.1342665

Cited by 4 publications

(10 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Access privileges can also be linked to the method through which users authenticates themselves to the system (e.g. password versus biometrics) [20,26]. These previous works have shown that it is possible to augment existing security mechanisms with the ability to utilise contextual information to further enhance their security capabilities.…”

Section: Context Awareness Acquisition and Usagementioning

confidence: 97%

“…Contextual information can also be used to determine a level of assurance (e.g. level of confidence in an authentication process) [19,20] that is then used to control some security decisions. For example, the types and cryptographic strengths of authentication tokens provide varying levels of assurance, and the assurance levels can be used by an authorisation decision engine to determine the level of privilege that can be granted to a subject.…”

Section: Context Awareness Acquisition and Usagementioning

confidence: 99%

See 1 more Smart Citation

A context-constrained authorisation (CoCoA) framework for pervasive grid computing

et al. 2008

View full text Add to dashboard Cite

The paper discusses access control implications when bridging Pervasive and Grid computing, and analyses the limitations of current Grid authorisation solutions when applied to Pervasive Grid environments. The key authorisation requirements for Pervasive Grid computing are identified and a novel Grid authorisation framework, the context-constrained authorisation framework CoCoA, is proposed. The CoCoA framework takes into account not only users' static attributes, but also their dynamic contextual attributes that are inherent in Pervasive computing.It adheres to open Grid standards, uses a modular layered approach to complement existing Grid authorisation systems, and inter-works with other Grid security building blocks. A prototype implementation of the CoCoA framework is presented and its performance evaluated.

show abstract

Section: Context Awareness Acquisition and Usagementioning

confidence: 97%

Section: Context Awareness Acquisition and Usagementioning

confidence: 99%

A context-constrained authorisation (CoCoA) framework for pervasive grid computing

et al. 2008

View full text Add to dashboard Cite

show abstract

“…An approach for an authentication middleware designed to supports ubiquitous web access [4]. It is a middleware extension used to secure ubiquitous data access through Web services.…”

Section: Amuwamentioning

confidence: 99%

“…Security issues can be a concern here, thus a comparison of security middleware approaches in this field is discussed. AMUWA [4] is a security middleware focusing on providing authentication and give it a higher priority assuming different authentication methods are needed for users at different locations. This approach is based on FAME-PERMIS (Flexible Access middleware Extensions to PERMIS) which is open source solution to support inter-institutional sharing of web resources and uses SOAP-based token Request/Reply messages.…”

Section: B Ubiquitous Computingmentioning

confidence: 99%

“…As a result of the security advantages it provides; security middleware has been widely adopted in many diversified systems such as e-commerce, web access grid computing and internet data storage. Taking for example iDataGuard [3] is a middleware providing a Secure Network Drive Interface to Untrusted Internet Data Storage; and FAME-PERMIS [4] an Authentication Middleware to Support Ubiquitous Web Access. Furthermore, security middleware has been a thriving research area to combat the continuous security issues in sensitive areas such as mobile ad hoc computing, pervasive/ubiquitous computing and peerto-peer (p2p) computing.…”

Section: Background and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Security Middleware for Pervasive and Ubiquitous Systems

Al-Jaroodi

Al-Dhaheri

Al-Abdouli

et al. 2009

2009 International Conference on Network-Based Information Systems

View full text Add to dashboard Cite

-Recently, pervasive and ubiquitous computing evolved tremendously and has become an integral part of many fields. This is widely attributed to their efficiency in integrating with everyday components and handling tasks in a faster and better way. As a result, technologies to facilitate their development, integration and security also evolved. Middleware is an essential component in this field and recently more emphasis has been put on security middleware as an enabling component for pervasive and ubiquitous applications. This is due to the high levels of personal and private data sharing in these systems. In this paper we survey some representative security middleware approaches and highlight their various properties and characteristics. We also discuss and compare these approaches in terms of their design, target environments, and main features. The review reveals that several options are available; however, there are still many issues and problems to be addressed to achieve more efficient security middleware.

show abstract

Data Management Challenges in Paediatric Information Systems

McClatchey

2014

From Physics to Daily Life

View full text Add to dashboard Cite

There is a compelling demand for the data integration and exploitation of heterogeneous biomedical information for improved clinical practice, medical research, and personalised healthcare across the EU. The area of paediatric information integration is particularly challenging since the patient's physiology changes with growth and different aspects of health being regularly monitored over extended periods of time. Paediatricians require access to heterogeneous data sets, often collected in different locations with different apparatus and over extended timescales. Using a Grid platform originally developed for physics at CERN and a novel integrated semantic data model the Health-e-Child project has developed an integrated healthcare platform for European paediatrics, providing seamless integration of traditional and emerging sources of biomedical data. The long-term goal of the project was to provide uninhibited access to universal biomedical knowledge repositories for personalised and preventive healthcare, large-scale information-based biomedical research and training, and informed policy making. The project built a Grid-enabled european network of leading clinical centres that can share and annotate paediatric data, can validate systems clinically, and diffuse clinical excellence across Europe by setting up new technologies, clinical workflows, and standards. The Health-e-Child project highlights data management challenges for the future of European paediatric healthcare and is the subject of this chapter.

show abstract

Towards an authentication middleware to support ubiquitous web access

Cited by 4 publications

References 3 publications

A context-constrained authorisation (CoCoA) framework for pervasive grid computing

A context-constrained authorisation (CoCoA) framework for pervasive grid computing

A Survey of Security Middleware for Pervasive and Ubiquitous Systems

Data Management Challenges in Paediatric Information Systems

Contact Info

Product

Resources

About