The growing diffusion of portable devices enable users to benefit from anytime and anywhere impromptu collaboration. Security is crucial to ensure secure sharing of information, but calls for appropriate policy models that take into account the dynamicity and heterogeneity of the new pervasive computing scenario. Collaborating entities cannot be predetermined and resource availability frequently varies, even unpredictably, due to user/device mobility, thus complicating resource access control. Policies cannot be defined based on entity’s identities/roles, as in traditional security solutions, or be specified a priori to face any operative run-time condition, but require continuous adjustments to adapt to the current situation. To address these issues, this paper advocates the adoption of a semantic context-aware paradigm to policy specification. Context-awareness allows to control operations on resources the basis of context visibility and semantic technologies allow high-level description of context/policy specification and reasoning about context/policies. The paper describes Proteus that, as a key feature, combines these two design guidelines to enable dynamic adaptation of policies depending on context changes. In particular, the paper shows how ontologies and logic programming rules can be used to leverage policy adaptation.

Proteus: A Semantic Context-Aware Adaptive Policy Model

TONINELLI, ALESSANDRA;MONTANARI, REBECCA;
2007

Abstract

The growing diffusion of portable devices enable users to benefit from anytime and anywhere impromptu collaboration. Security is crucial to ensure secure sharing of information, but calls for appropriate policy models that take into account the dynamicity and heterogeneity of the new pervasive computing scenario. Collaborating entities cannot be predetermined and resource availability frequently varies, even unpredictably, due to user/device mobility, thus complicating resource access control. Policies cannot be defined based on entity’s identities/roles, as in traditional security solutions, or be specified a priori to face any operative run-time condition, but require continuous adjustments to adapt to the current situation. To address these issues, this paper advocates the adoption of a semantic context-aware paradigm to policy specification. Context-awareness allows to control operations on resources the basis of context visibility and semantic technologies allow high-level description of context/policy specification and reasoning about context/policies. The paper describes Proteus that, as a key feature, combines these two design guidelines to enable dynamic adaptation of policies depending on context changes. In particular, the paper shows how ontologies and logic programming rules can be used to leverage policy adaptation.
Policies for Distributed Systems and Networks
129
138
A. Toninelli; R. Montanari; L. Kagal; O.Lassila
File in questo prodotto:
Eventuali allegati, non sono esposti

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: http://hdl.handle.net/11585/49438
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 25
  • ???jsp.display-item.citation.isi??? ND
social impact