Mobile security with location-aware role-based access control
Chapter, Peer reviewed
Permanent lenke
http://hdl.handle.net/11250/137985Utgivelsesdato
2012Metadata
Vis full innførselOriginalversjon
Ulltveit-Moe, N., & Oleshchuk, V.A. (2012). Mobile security with location-aware role-based access control. In R. Prasad, K. Farkas, A. U. Schmidt, A. Lioy, G. Russello & F. L. Luccio (Eds.), Security and privacy in mobile information and communication systems (Vol. 94, pp. 172-183): Springer Berlin Heidelberg. 10.1007/978-3-642-30244-2_15Sammendrag
This paper describes how location-aware Role-Based Access
Control (RBAC) can be implemented on top of the Geographically eXtensible
Access Control Markup Language (GeoXACML). It furthermore
sketches how spatial separation of duty constraints (both static and dynamic)
can be implemented using GeoXACML on top of the XACML
RBAC profile. The solution uses physical addressing of geographical locations
which facilitates easy deployment of authorisation profiles to the
mobile device. Location-aware RBAC can be used to implement location
dependent access control and also other security enhancing solutions on
mobile devices, like location dependent device locking, firewall, intrusion
prevention or payment anti-fraud systems.
Beskrivelse
Published version of an article from the book: Security and privacy in mobile information and communication systems. Also available on SpringerLink: http://dx.doi.org/10.1007/978-3-642-30244-2_15