Trust-Based Security in Pervasive Computing Environments

Authors: , Anupam Joshi

Book Title: IEEE Computer

Date:

Abstract: Traditionally, stand-alone computers and small networks rely on user authentication and access control to provide security. These physical methods use system-based controls to verify the identity of a person or process, explicitly enabling or restricting the ability to use, change, or view a computer resource. However, these strategies are inadequate for the increased flexibility that distributed networks such as the Internet and pervasive computing environments require because such systems lack central control and their users are not all predetermined. Mobile users expect to access locally hosted resources and services anytime and anywhere, leading to serious security risks and access control problems. We propose a solution based on trust management that involves developing a security policy, assigning credentials to entities, verifying that the credentials fulfill the policy, delegating trust to third parties, and reasoning about users' access rights. This architecture is generally applicable to distributed systems but geared toward pervasive computing environments.

Type: Article

Tags: pervasive computing, policy, privacy, security, trust

Google Scholar: search

Attachments:

73.pdfdownloads: 284
303.pdfdownloads: 239

Publications
Log in