Design and Implementation of Access Control System for Smart Office Environment
In recent years, electric devices are increasingly being connected to networks. Reflecting this trend, researchers are actively investigating how to control these devices from a network and which combinations of devices provide a user with optimum services. We call the environment produced by such networking a smart office. Such an environment primarily focuses on service or connection methods. However, security in a smart office is important, yet has not been sufficiently discussed. This issues include relations between devices and users, and changing environments and users. In order to solve these problems, we built a security system using role-based access control (RBAC) as the base. RBAC considers cases in which objects and users have a complex relations. In this paper, we present our system that provides not only access control of devices, but also provides access control of services.
KeywordsAccess Control Security Requirement Abstract Service Access Control System Elliptic Curve Cryptosystem
Unable to display preview. Download preview PDF.
- 1.F. Mizoguci, H. Nishiyama, H. Ohwada and H. Hiraishi, Smart office robot collaboration based of a multi-agent programming, Artificial Intelligence, Vol.114, 1999.Google Scholar
- 2.David L. Martin, Dam J. Cheyer and Douglas B., “The Open Agent Architecture: A Framework for Building Distributed Software Systems,” Applied Artificial Intelligence, Vol.13, 1999.Google Scholar
- 3.David F. Ferraiolo, Johon F. Barkley and D. Richard Kuhn A Role Based Access Control Model and Reference Implementation within a Corporatre Internet, ACM Transactions on Information System Security, Vol.1 Number 2, 1999.Google Scholar
- 4.Ravi Sandhu, David Ferraiolo and Richard Kuhn, The NIST Model for Role-Based Access Control: Towards A Unified Standard, ACM Workshop on Role-Based Access Control 2000.Google Scholar
- 5.Wu Wen and Fumio Mizoguchi, An Authorization-based Trust Model For Multiagent Systems, To appear, Applied Artificial Intelligence, 2000.Google Scholar
- 6.Dirk Balfanz, Drew Dean and Mike Spreitzer, A Security Infrastructure for Distributed Java Appication, Proc. of 2000 IEEE System on Security and Privacy, 2000.Google Scholar
- 7.W. Yamazaki, W. Wen and F. Mizoguchi, Analysys of Security Requirement for Smart Office, The 1999 Symposium on Cryprography and Information Security (Japanese), 1999.Google Scholar
- 10.Curry, I. Trustedpublic-key infrastructure. Technical Report Entrust Technologies Ltd, 1997.Google Scholar
- 12.Arsenault, A., and S. Turner. Internet x.509 public key infrastructure pkix roadmap, 1999. Technical Report, IETF PKIX Working Group.Google Scholar
- 13.Bagwill, R. et al. Security in open systems. Technical Report 800-7, National Institute of Standard and Technology, 1994.Google Scholar
- 14.Bell, D., and L.J. Feigenbaum, and J. Lacy. Decentralized trust management. Technical Report DIMACS, 1996.Google Scholar
- 15.Ellison C. et al. Spki certificate theory, internet draft, technical Report IETF SPKI Working Group, 1997.Google Scholar
- 16.Freier, A., P. Kocher, and P. Kaltorn, SSL v3.0 specification. Technical Report http://home.netscape.com/env/ssl3/s-SPEC.HTM, IETF Task Force.