SitAC – A System for Situation-aware Access Control - Controlling Access to Sensor Data

Marc Hüffmeyer, Pascal Hirmer, Bernhard Mitschang, Ulf Schreier, Matthias Wieland

2017

Abstract

This paper addresses situation-aware access control for sensitive data produced in sensor networks. It describes how an attribute-based access control system can be combined with a situation recognition system to create a highly flexible, well performing, and situation-aware access control system. This access control system is capable of automatically granting or prohibiting access depending on situation occurrences and other dynamic or static security attributes. Besides a high-level architecture, this work also describes concepts and mechanisms that can be used to build such a system.

References

  1. Ahn, G.-J. and Sandhu, R. (2000). Role-Based Authorization Constraints Specification. ACM Transactions on Information and System Security, Vol. 3, No. 4.
  2. Attard, J., Scerri, S., Rivera, I., and Handschuh, S. (2013). Ontology-based situation recognition for context-aware systems. In Proceedings of the 9th International Conference on Semantic Systems, pages 113-120. ACM.
  3. Beimel, D. and Peleg, M. (2011). Using OWL and SWRL to represent and reason with situation-based access control policies. Data & Knowledge Engineering, Vol. 70, Issue 6.
  4. Brumitt, B., Meyers, B., Krumm, J., Kern, A., and Shafer, S. (2000). EasyLiving: Technologies for Intelligent Environments. In Handheld and Ubiquitous Computing. Springer Berlin Heidelberg.
  5. Dargie, W., Mendez, J., Mobius, C., Rybina, K., Thost, V., Turhan, A.-Y., et al. (2013). Situation Recognition for Service Management Systems Using OWL 2 Reasoners. In Proceedings of the 10th IEEE Workshop on Context Modeling and Reasoning 2013, pages 31-36. IEEE Computer Society.
  6. Ferraiolo, D., Kuhn, R., and Hu, V. (2015). Attribute-Based Access Control. In Computer, Vol.48. IEEE Computer Society.
  7. Franco da Silva, A. C., Hirmer, P., Wieland, M., and Mitschang, B. (2016). SitRS XT - Towards Near Real Time Situation Recognition. Journal of Information and Data Management.
  8. Glombiewski, N., Hoßbach, B., Morgen, A., Ritter, F., and Seeger, B. (2013). Event Processing on your own Database. In BTW workshops, pages 33-42.
  9. Hasan, S., Curry, E., Banduk, M., and O'Riain, S. (2011). Toward Situation Awareness for the Semantic Sensor Web: Complex Event Processing with Dynamic Linked Data Enrichment. SSN, 839:69-81.
  10. Häussermann, K., Hubig, C., Levi, P., Leymann, F., Simoneit, O., Wieland, M., and Zweigle, O. (2010). Understanding and designing situation-aware mobile and ubiquitous computing systems. Proc. of intern. Conf. on Mobile, Ubiquitous and Pervasive Computing, pages 329-339.
  11. Hirmer, P., Wieland, M., Breitenbücher, U., and Mitschang, B. (2016a). Automated Sensor Registration, Binding and Sensor Data Provisioning. In Proceedings of the CAiSE'16 Forum, at the 28th International Conference on Advanced Information Systems Engineering (CAiSE 2016).
  12. Hirmer, P., Wieland, M., Breitenbücher, U., and Mitschang, B. (2016b). Dynamic Ontology-based Sensor Binding. In Advances in Databases and Information Systems. 20th East European Conference, ADBIS 2016, Prague, Czech Republic, August 28-31, 2016, Proceedings, volume 9809 of Information Systems and Applications, incl. Internet/Web, and HCI. Springer International Publishing.
  13. Hirmer, P., Wieland, M., Schwarz, H., Mitschang, B., Breitenbücher, U., and Leymann, F. (2015). SitRS - A Situation Recognition Service based on Modeling and Executing Situation Templates. In Barzen, J., Khalaf, R., Leymann, F., and Mitschang, B., editors, Proceedings of the 9th Symposium and Summer School On Service-Oriented Computing, volume RC25564 of Technical Paper. IBM Research Report.
  14. Hüffmeyer, M. and Schreier, U. (2016a). Analysis of an Access Control System for RESTful Services. ICWE 7816 - International Conference on Web Engineering.
  15. Hüffmeyer, M. and Schreier, U. (2016b). Formal Comparison of an Attribute Based Access Control Language for RESTful Services with XACML. SACMAT 7816 - Symposium on Access Control Models and Technologies.
  16. Hüffmeyer, M. and Schreier, U. (2016c). RestACL - An Attribute Based Access Control Language for RESTful Services. ABAC 7816 - Proceedings of the 1st Workshop on Attribute Based Access Control.
  17. Jin, X., Krishnan, R., and Sandhu, R. (2012). A Unified Attribute-Based Access Control Model Covering DAC, MAC and RBAC. DBSec 7812 - Proceedings of the 26th Annual Conference on Data and Applications Security and Privacy.
  18. Peleg, M., Beimel, D., Dorib, D., and Denekamp, Y. (2008). Situation-Based Access Control: Privacy management via modeling of patient data access scenarios. Journal of Biomedical Informatics, Vol. 41, Issue 6.
  19. Ramli, C. D. P. K., Nielson, H. R., and Nielson, F. (2012). The Logic of XACML. In Lecture Notes in Computer Science - Formal Aspects of Component Software. Springer.
  20. Wang, X., Zhang, D. Q., Gu, T., and Pung, H. (2004). Ontology Based Context Modeling and Reasoning Using OWL. In Proceedings of the Second IEEE Annual Conference on Pervasive Computing and Communications Workshops. IEEE Computer Society.
  21. Wieland, M., Schwarz, H., Breitenbücher, U., and Leymann, F. (2015). Towards Situation-Aware Adaptive Workflows. In Proceedings of the 13th Annual IEEE Intl. Conference on Pervasive Computing and Communications Workshops: 11th Workshop on Context and Activity Modeling and Recognition. IEEE.
  22. Yau, S. S., Yao, Y., and Banga, V. (2005). Situation-aware access control for service-oriented autonomous decentralized systems. In Proceedings of the 2005 International Symposium on Autonomous Decentralized Systems, ISADS 7805.
  23. Yazar, A., Erden, F., and Cetin, A. E. (2014). Multisensor ambient assisted living system for fall detection. In Proceedings of the IEEE International Conference on Acoustics, Speech, and Signal Processing (ICASSP14), pages 1-3. Citeseer.
  24. Yuan, E. and Tong, J. (2005). Attribute based access control (ABAC) for Web services. ICWS 7805 - International Conference on Web Services.
Download


Paper Citation


in Harvard Style

Hüffmeyer M., Hirmer P., Mitschang B., Schreier U. and Wieland M. (2017). SitAC – A System for Situation-aware Access Control - Controlling Access to Sensor Data . In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-209-7, pages 113-125. DOI: 10.5220/0006186501130125


in Bibtex Style

@conference{icissp17,
author={Marc Hüffmeyer and Pascal Hirmer and Bernhard Mitschang and Ulf Schreier and Matthias Wieland},
title={SitAC – A System for Situation-aware Access Control - Controlling Access to Sensor Data},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2017},
pages={113-125},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006186501130125},
isbn={978-989-758-209-7},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - SitAC – A System for Situation-aware Access Control - Controlling Access to Sensor Data
SN - 978-989-758-209-7
AU - Hüffmeyer M.
AU - Hirmer P.
AU - Mitschang B.
AU - Schreier U.
AU - Wieland M.
PY - 2017
SP - 113
EP - 125
DO - 10.5220/0006186501130125