Title :
An efficient and flexible access control framework for Java programs in mobile terminals
Author :
Tomimori, Hiroyuki ; Nakamoto, Yukikazu
Author_Institution :
NEC Networks Dev. Labs., Tokyo, Japan
Abstract :
The current Java Application Environment for mobile terminals provides a very restricted security mechanism which is known as "the sandbox model." Although 3rd Generation Partnership Project defines access control and permission framework of a Java program in the terminal as the security domain, the specification has problems such that implementation in the terminal becomes difficult because it requires content authentication for determining the domain. In order to solve the problems and increase flexibility of mobile software services, we propose an efficient and flexible access control framework for the Java program in the mobile terminal. This framework relates a security domain to a server and utilizes the server authentication in SSL in order to determine the domain which the program belong to. As a result, downloading the program and determining the domain becomes efficient. This framework is able to apply other information appliances.
Keywords :
Java; authorisation; message authentication; mobile computing; Java program; SSL; access control; content authentication; mobile software services; mobile terminals; permission framework; sandbox model; security mechanism; server authentication; Access control; Authentication; Home appliances; Information security; Intelligent networks; Java; National electric code; Permission; Trademarks; Virtual machining;
Conference_Titel :
Distributed Computing Systems Workshops, 2002. Proceedings. 22nd International Conference on
Print_ISBN :
0-7695-1588-6
DOI :
10.1109/ICDCSW.2002.1030862
