Title :
Secure Delegation Model based on SAML in Ubiquitous Environments
Author :
Kim, Kyu ; Lee, Hae ; Kim, Ung
Author_Institution :
Dept. of Comput. Eng., SungKyunKwan Univ., Suwon
Abstract :
Ubiquitous environment is a post-desktop model of human-computer interaction in which information processing has been thoroughly integrated into everyday objects and activities. But hacker attack one of fragile point and can misuse legitimate user privilege because all of the connected devices provide services for the user control and monitoring in real time. Also, the users of web services must temporarily delegate some or all of their rights to agents in order to perform actions on their behalf. This fact risks the exposure of user privacy information. In this paper, we propose secure delegation model based on SAML that provides confidentiality and integrity about the user information in ubiquitous environment. The proposed mechanism defines extended agent delegation by Security Assertion Markup Language (SAML) and proposes not only authentication but also privilege grant by access control server based on extensible Access Control Markup Language (XACML).
Keywords :
authorisation; page description languages; ubiquitous computing; SAML; Security Assertion Markup Language; Web service; access control server; agent delegation; authentication; confidentiality; extensible Access Control Markup Language; human-computer interaction; information processing; post-desktop model; secure delegation model; ubiquitous environment; user control; user privilege; Access control; Authentication; Authorization; Information security; Markup languages; Pervasive computing; Privacy; Simple object access protocol; Web services; XML; Delegation; SAML; Security; XACML;
Conference_Titel :
Information Security and Assurance, 2008. ISA 2008. International Conference on
Conference_Location :
Busan
Print_ISBN :
978-0-7695-3126-7
DOI :
10.1109/ISA.2008.56
