UMBC ebiquity

A Security Architecture Based on Trust Management for Pervasive Computing Systems

Authors: Lalana Kagal, Filip Perich, Anupam Joshi, and Tim Finin

Book Title: Grace Hopper Celebration of Women in Computing

Date: October 09, 2002

Abstract: Traditionally, stand-alone computers and small networks rely on user authentication and access control to provide security. These physical methods use system-based controls to verify the identity of a person or process, explicitly enabling or restricting the ability to use, change, or view a computer resource. However, these strategies are inadequate for the increased flexibility that distributed networks such as the Internet and ubiquitous/pervasive computing environments require, as these systems lack central control and in addition, their users are not all predetermined. Users in pervasive environments expect to access locally hosted resources and services anytime and anywhere leading to serious security risks and access control problems. We propose a solution based on distributed trust management which involves developing a security policy, assigning credentials to entities, verifying that the credentials conform to the policy, delegating trust to third parties, revoking rights and reasoning about users' access rights. This paper presents an infrastructure that complements existing security features like Public Key Infrastructure (PKI) and Role Based Access Control with distributed trust management to provide a highly flexible mode of enforcing security in a pervasive computing environments.

Type: InProceedings

Tags: security, privaxy, pervasive computing, trust, pki, rbac

Google Scholar: R0AmPe9j30EJ:sc

Number of Google Scholar citations: 30 [show citations]

Number of downloads: 4849

 

Available for download as


size: 115318 bytes
 

Related Projects:

Past Projects

 Intrusion Detection.
 Rei : A Policy Specification Language.
 Securing the Semantic Web: A Trust Management Approach.
 Vigil / Secure Centaurus.