%0 Journal Article
%T Context-aware Authorization in Highly Dynamic Environments
%A Jean-Yves Tigli
%A Stephane Lavirotte
%A Gaetan Rey
%A Vincent Hourdin
%J International Journal of Computer Science Issues
%D 2009
%I IJCSI Press
%X Highly dynamic computing environments, like ubiquitous and pervasive computing environments, require frequent adaptation of applications. Context is a key to adapt suiting user needs. On the other hand, standard access control trusts users once they have authenticated, despite the fact that they may reach unauthorized contexts. We analyse how taking into account dynamic information like context in the authorization subsystem can improve security, and how this new access control applies to interaction patterns, like messaging or eventing. We experiment and validate our approach using context as an authorization factor for eventing in Web service for device (like UPnP or DPWS), in smart home security.
%K Access Control
%K Context-awareness
%K Dynamic Authorization
%K Context-sensitive Authorization
%K Interaction Patterns
%K IJCSI
%U http://www.ijcsi.org/papers/4-1-24-35.pdf