Secure Context-Sensitive Authorization

There is a recent trend toward rule-based authorization systems to achieve flexible security policies. Also, new sensing technologies in pervasive computing make it possible to define context-sensitive rules, such as "Allow Database Access Only to Staff Who Are Currently Located in the Main Office." However, these rules, or the facts that are needed to verify authority, often involve sensitive context information. This paper presents a secure context-sensitive authorization system that protects confidential information in facts or rules.

Provided by: Dartmouth College Topic: Security Date Added: Jan 2011 Format: PDF

Find By Topic