Utilizing Semantic Knowledge for Access Control in Pervasive and Ubiquitous Systems

Abstract

Controlling access in pervasive environments is crucial and a significant challenge because users and devices can connect from anywhere which results in users and resources becoming available at any point of time and location depending on the situation. Access control policies for this type of environment are required to conform to high-level business notions. In pervasive environments, these high-level notions refer to contexts of the situation which can change unpredictably and must be interpreted semantically to maintain proper access control. Therefore, it is necessary to have a formal representation that represents semantics of the contexts, reflects the change of the situation, and can be shared and understood by a policy system. This paper addresses these issues by introducing a context management system that uses a semantic web approach as an underlying mechanism to model and represent semantics of the contexts. The system stores current contexts in a semantic knowledge base which is used by a semantic access control system in order to form access control policies and evaluate policies at run time. The approach is validated through a proof of concept implementation that includes performance results of the context management system as it responds to a change of the situation.