We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
Enforcing mobile security with location-aware role-based access control.
- Authors
Ulltveit-Moe, Nils; Oleshchuk, Vladimir
- Abstract
This paper describes how location-aware role-based access control (RBAC) can be implemented on top of the Geospatial eXtensible Access Control Markup Language (GeoXACML). It furthermore sketches how spatial separation of duty constraints (both static and dynamic) can be implemented using GeoXACML on top of the XACML RBAC profile. The solution uses physical addressing of geographical locations, which facilitates easy deployment of authorisation profiles to the mobile device. Location-aware RBAC can be used to implement location-dependent access control and also other security enhancing solutions on mobile devices, such as location-dependent device locking, firewall, intrusion prevention or payment anti-fraud systems. The system has been implemented and tested, both to verify the server capacity and also the client capacity running on a mobile device. Copyright © 2013 John Wiley & Sons, Ltd.
- Subjects
WEBSITE security; CONFIDENTIAL communication access control; INFORMATION filtering; COMPUTER security; MOBILE communication system security; LAW
- Publication
Security & Communication Networks, 2016, Vol 9, Issue 5, p429
- ISSN
1939-0114
- Publication type
Article
- DOI
10.1002/sec.879