Advanced Information Networking and Applications Workshops, International Conference on (2007)
Niagara Falls, Ontario, Canada
May 21, 2007 to May 23, 2007
Amirreza Masoumzadeh , Sharif University of Technology, Iran
Morteza Amini , Sharif University of Technology, Iran
Rasool Jalili , Sharif University of Technology, Iran
Pervasive computing environments introduce new requirements in expressiveness and flexibility of access control policies which are almost addressable leveraging contextual information. Although context-awareness augments the expressiveness of policies, it increases the probability of arising conflicts. Generally, context-aware authorizations are defined using some contextual constraints on the involved entities in an access request. Accordingly, principles like "more specific overrides", which are employed to resolve possible conflicts, are required to consider the contextual constraints. In this paper, we formalize the use of context constraints in a typical context-aware multi-authority policy model; each authority is capable of defining an expressive conflict resolution policy leveraging context-based precedence establishment principles. Based on the policy model, we propose a comprehensive graph-based approach to resolve conflicts. The strength of the approach is that conflict detection which requires context-based inference is almost done statically and resolution is left for run-time.
A. Masoumzadeh, R. Jalili and M. Amini, "Conflict Detection and Resolution in Context-Aware Authorization," Advanced Information Networking and Applications Workshops, International Conference on(AINAW), Niagara Falls, Ontario, Canada, 2007, pp. 505-511.