Mobile Computing, Applications, and Services. Third International Conference, MobiCASE 2011, Los Angeles, CA, USA, October 24-27, 2011. Revised Selected Papers

Research Article

An User-Centric Attribute Based Access Control Model for Ubuquitous Environments

Download
326 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-32320-1_26,
        author={Fei Li and Dasun Weerasinghe and Dhiren Patel and Muttukrishnan Rajarajan},
        title={An User-Centric Attribute Based Access Control Model for Ubuquitous Environments},
        proceedings={Mobile Computing, Applications, and Services. Third International Conference, MobiCASE 2011, Los Angeles, CA, USA, October 24-27, 2011. Revised Selected Papers},
        proceedings_a={MOBICASE},
        year={2012},
        month={10},
        keywords={Attributes based access control XACML privacy security mobilepolicy},
        doi={10.1007/978-3-642-32320-1_26}
    }
    
  • Fei Li
    Dasun Weerasinghe
    Dhiren Patel
    Muttukrishnan Rajarajan
    Year: 2012
    An User-Centric Attribute Based Access Control Model for Ubuquitous Environments
    MOBICASE
    Springer
    DOI: 10.1007/978-3-642-32320-1_26
Fei Li1,*, Dasun Weerasinghe1, Dhiren Patel2,*, Muttukrishnan Rajarajan1,*
  • 1: City University London
  • 2: NIT
*Contact email: Fei.Li.1@city.ac.uk, dhiren29p@gmail.com, R.Muttukrishnan@city.ac.uk

Abstract

The recent developments in mobile platforms are significant, both on the hardware and software fronts. With the huge success of the iPhone and Android phones, more and more companies are entering the mobile application market. However, there are increasing security threats for mobile phone users due to the new generation of attacks targeted purely on mobile environments. Several solutions have been proposed to date, which can generally handle consent in a fixed and coarse-grained way. However, with the increasing usage of mobile devices for high value transactions, the future access control from mobile devices should be based on ‘user-centric’ challenge response techniques based on the freatures of mobile platforms.The authors present the MLive© framework, a novel approach to establish mutual authentication between the users and the service providers using unique mobile based attirbutes to solve the threats in the mobile environments.