Information Security and Digital Forensics. First International Conference, ISDF 2009, London, United Kingdom, September 7-9, 2009, Revised Selected Papers

Research Article

Parameter Based Access Control Model for Mobile Handsets

Download78 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-11530-1_8,
        author={Dasun Weerasinghe and Raj Muttukrishnan and Veselin Rakocevic},
        title={Parameter Based Access Control Model for Mobile Handsets},
        proceedings={Information Security and Digital Forensics. First International Conference, ISDF 2009, London, United Kingdom, September 7-9, 2009, Revised Selected Papers},
        proceedings_a={ISDF},
        year={2012},
        month={5},
        keywords={Parameter based Access Control Security Privacy Mobile Devices},
        doi={10.1007/978-3-642-11530-1_8}
    }
    
  • Dasun Weerasinghe
    Raj Muttukrishnan
    Veselin Rakocevic
    Year: 2012
    Parameter Based Access Control Model for Mobile Handsets
    ISDF
    Springer
    DOI: 10.1007/978-3-642-11530-1_8
Dasun Weerasinghe1,*, Raj Muttukrishnan1, Veselin Rakocevic1
  • 1: City University London
*Contact email: dasun.weerasinghe@city.ac.uk

Abstract

The concept of mobile services is to provide the access to online content and services from anywhere, anytime and on any device. The mobile user is the consumer for the mobile services and the access to the services are enabled according to the user identification. Meanwhile, mobile device identity, SIM identity and location identity are some of the other identification parameters can be used by mobile service providers. The data and the services are delivered to the mobile device in encrypted format and the cryptographic key for the data decryption is derived using the identity parameters and key materials at the mobile. Therefore, the decryption key is not transmitted over the network and it is generated in the device before the service access. The generation of the decryption key in the mobile using the identity and attribute parameters will enable parameter based access control for mobile content. The data access rules are defined by service providers based on the availability of attributes and identities at the mobile handset.