• DocumentCode
    3014852
  • Title

    A calculus for composite authorities´ policy derivation in shared domains of pervasive computing environments

  • Author

    Amini, Morteza ; Jalili, Rasool

  • Author_Institution
    Dept. of Comput. Eng., Sharif Univ. of Technol., Tehran
  • fYear
    2008
  • fDate
    24-27 Dec. 2008
  • Firstpage
    21
  • Lastpage
    28
  • Abstract
    The decentralized security management in a pervasive computing environment, requires apportioning the environment into several security domains. In each security domain, an administrator (we call it authority) is responsible for specifying the security policies of the domain. Overlapping of security domains results in the requirement of cooperative security management in the shared/ overlapping domains. To satisfy this requirement, we propose an abstract security model, as well as its supplementary calculus of composite authorities. The security model is based on deontic logic and is independent of the domains´ heterogeneity. The model´s policy language (we call it MASL) enables multiple authorities to specify their domain policies, including obligations and authorizations. Our proposed calculus of composite authorities, enables the security system to infer policy statements of composite authorities from the cooperating primitive authorities. The calculus offers three styles of cooperative administration including collaborative, disjunctive, and delegative administration. Abstraction and automated composite authorities´ policy derivation are the main advantages of the proposed logical model.
  • Keywords
    security of data; ubiquitous computing; authorities policy derivation; authorizations; cooperative administration; cooperative security management; decentralized security management; deontic logic; pervasive computing; supplementary calculus; Access control; Authorization; Calculus; Collaboration; Computer security; Distributed computing; Environmental management; Logic programming; Ontologies; Pervasive computing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer and Information Technology, 2008. ICCIT 2008. 11th International Conference on
  • Conference_Location
    Khulna
  • Print_ISBN
    978-1-4244-2135-0
  • Electronic_ISBN
    978-1-4244-2136-7
  • Type

    conf

  • DOI
    10.1109/ICCITECHN.2008.4803121
  • Filename
    4803121