Context-sensitive authorization for asynchronous communications

Abstract : Main requirement of recent computing environments, like mobile and then ubiquitous computing, is to adapt applications to context. On the other hand, access control generally trust users once they have authenticated, despite the fact that they may reach unauthorized situations. We analyse how dynamic information can be used to improve security in the authorization process, especially in the case of asynchronous communications, like messaging or eventing. We experiment and validate our approach using context as an authorization factor for eventing in Web service for device (like UPnP or DPWS).
Liste complète des métadonnées

Cited literature [15 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-00476882
Contributor : Diane Lingrand <>
Submitted on : Tuesday, April 27, 2010 - 2:51:10 PM
Last modification on : Monday, November 5, 2018 - 3:52:09 PM
Document(s) archivé(s) le : Monday, October 22, 2012 - 3:26:09 PM

File

hourdin-tigli-etal_2009.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution - NonCommercial - NoDerivatives 4.0 International License

Identifiers

  • HAL Id : hal-00476882, version 1

Collections

Citation

Vincent Hourdin, Jean-Yves Tigli, Stéphane Lavirotte, Gaëtan Rey, Michel Riveill. Context-sensitive authorization for asynchronous communications. 4th International Conference for Internet Technology and Secured Transactions, Nov 2009, Londres, United Kingdom. ⟨hal-00476882⟩

Share

Metrics

Record views

247

Files downloads

81