Title :
Context-sensitive authorization for asynchronous communications
Author :
Hourdin, V. ; Tigli, J.-Y. ; Lavirotte, S. ; Rey, G. ; Riveill, Michel
Author_Institution :
Mobilegov, I3S, France
Abstract :
Main requirement of recent computing environments, like mobile and then ubiquitous computing, is to adapt applications to context. On the other hand, access control generally trust users once they have authenticated, despite the fact that they may reach unauthorized situations. We analyse how dynamic information can be used to improve security in the authorization process, especially in the case of asynchronous communications, like messaging or eventing. We experiment and validate our approach using context as an authorization factor for eventing in Web service for device (like UPnP or DPWS).
Keywords :
Web services; authorisation; mobile computing; Web service; access control; asynchronous communications; context-sensitive authorization; mobile computing; ubiquitous computing; Access control; Asynchronous communication; Authorization; Context; Context-aware services; Information analysis; Information security; Mobile computing; Pervasive computing; Ubiquitous computing;
Conference_Titel :
Internet Technology and Secured Transactions, 2009. ICITST 2009. International Conference for
Conference_Location :
London
Print_ISBN :
978-1-4244-5647-5
DOI :
10.1109/ICITST.2009.5402550
