UMBC ebiquity

Trust-Based Security in Pervasive Computing Environments

Authors: Lalana Kagal, Tim Finin, and Anupam Joshi

Journal: IEEE Computer

Date: December 01, 2001

Abstract: Traditionally, stand-alone computers and small networks rely on user authentication and access control to provide security. These physical methods use system-based controls to verify the identity of a person or process, explicitly enabling or restricting the ability to use, change, or view a computer resource. However, these strategies are inadequate for the increased flexibility that distributed networks such as the Internet and pervasive computing environments require because such systems lack central control and their users are not all predetermined. Mobile users expect to access locally hosted resources and services anytime and anywhere, leading to serious security risks and access control problems. We propose a solution based on trust management that involves developing a security policy, assigning credentials to entities, verifying that the credentials fulfill the policy, delegating trust to third parties, and reasoning about users' access rights. This architecture is generally applicable to distributed systems but geared toward pervasive computing environments.

Type: Article

Tags: security, trust, trust, security, pervasive computing, policy, privacy

Google Scholar: wUayzVX0FcEJ

Number of Google Scholar citations: 214 [show citations]

Number of downloads: 7945

 

Available for download as


size: 263827 bytes
 

Related Projects:

Past Projects

 Rei : A Policy Specification Language.
 Securing the Semantic Web: A Trust Management Approach.