DOI QR코드

DOI QR Code

Access Control as a Service for Information Protection in Semantic Web based Smart Environment

  • Siddiqui, Isma Farah (Department of computer science and engineering, Hanyang University ERICA Campus) ;
  • Lee, Scott Uk-Jin (Department of computer science and engineering, Hanyang University ERICA Campus)
  • Received : 2016.05.13
  • Accepted : 2016.06.11
  • Published : 2016.10.31

Abstract

Pervasive computing and Internet of Things (IoT) have recently received considerable interest to deploy solutions for the future Internet. Smart environments are integrated with Semantic Web to provide context-awareness to the processed information. Self-learning techniques have been adopted within smart solutions for efficient retrieval of data but do not process data with privacy parameters for in-place authorization. To overcome this issue, we present a novel approach of deploying access control as a service mechanism within Semantic Web based smart environment by using eXtensible Access Control Markup Language (XACML). The proposed XACML as a Service (XACMLaaS) approach offers fine-grained access control for protecting information within smart environment. In this paper, we have defined mathematical rules for each components of proposed access control service layer. These rules are for implementation of access control using XACML. The proposed approach allows the adaptation of authorization of information at component level and provides scalable solution for authorization policies and rule enforcement within smart environment.

Keywords

References

  1. M. Weiser, "The computer for the 21st century," Scientific American, Vol. 265, no. 3, pp. 94-104, 1991. http://dx.doi.org/10.1038/scientificamerican0991-94
  2. C. Ramos, J. C. Augusto, D. Shapiro, "Ambient intelligence-the next step for artificial intelligence," Intelligent Systems, IEEE, vol. 23, no. 2, pp. 15-18, 2008. DOI: http://dx.doi.org/10.1109/mis.2008.19
  3. T. Berners-Lee, J. Hendler, O. Lassila, "The Semantic Web," Scientific American, vol. 284, no. 5, pp. 28-37, 2001. dx.doi.org/10.1038/scientificamerican0501-34
  4. E. Viljamaa, J. Kiljander, J.-P. Soininen, A. Ylisaukko-oja, "A smart control system solution based on Semantic Web and uID," in Int'l. Conf. on Mobile Ubiquitous Computing, Systems, Services and Technologies(UBICOMM2011), Nov. 2011, pp. 105-110.
  5. B. Parducci, H. Lockhart, R. Levinson, M. McRae, "Extensible access control markup language-version2.0," OASIS Standard, 2005. https://docs.oasis-open.org/xacml/2.0/access_control-xacml-2.0-core-spec-os.pdf
  6. H. Shen, "A semantic-aware attribute-based access control model for web services," in Algorithms and Architectures for Parallel Processing. Springer, pp. 693-703, 2009. http://dx.doi.org/10.1007/978-3-642-03095-6_65
  7. U. Lang, "OpenPMF SCaaS: authorization as a service for cloud & SOA applications," in Int'l Conf. on Cloud Computing Technology and Science, IEEE, Nov. 2010, pp. 634-643. http://dx.doi.org/10.1109/cloudcom.2010.13
  8. R. Laborde, F. Barrere, and A. Benzekri, "Toward authorization as a service: a study of the XACML standard," In Proc. of the 16th Communications & Networking Symposium, Apr. 2013, p. 9. http://dl.acm.org/citation.cfm?id=2499995
  9. K. Maria, E. Vasilis, and A. Grigoris, "S-CRETA: Smart classroom real-time assistance," Ambient Intelligence-Software and Applications. Springer, pp. 67-74, 2012. http://dx.doi.org/10.1007/978-3-642-28783-1_9
  10. T. Cadenhead, M. Kantarcioglu, V. Khadilkar, and B. Thuraisingham, "Design and implementation of a cloud-based assured information sharing system," Computer Network Security. Springer, pp. 36-50, 2012. http://dx.doi.org/10.1007/978-3-642-33704-8_4
  11. D'Elia, J. Honkola, D. Manzaroli, and T. S. Cinotti, "Access control at triple level: Specification and enforcement of a simple RDF model to support concurrent applications in smart environments," Smart Spaces and Next Generation Wired/Wireless Networking, Springer, pp. 63-74, 2011. http://dx.doi.org/10.1007/978-3-642-22875-9_6
  12. V. Khadilkar, T. Cadenhead, M. Kantarcioglu, and B. Thuraisingham, "Assured information sharing (AIS) using private clouds," High Performance Cloud Auditing and Applications, Springer, pp. 215-255, 2014. http://dx.doi.org/10.1007/978-1-4614-3296-8_9
  13. M. Compton, P. Barnaghi, L. Bermudez, R. GarciA-Castro, O. Corcho, S. Cox, J. Graybeal, M. Hauswirth, C. Henson, A. Herzog, "The SSN ontology of the W3C semantic sensor network incubator group," Web Semantics: Science, Services and Agents on the World Wide Web, vol. 17, 2012, pp. 25-32. http://dx.doi.org/10.1016/j.websem.2012.05.003
  14. Apache Jena https://jena.apache.org/ (last accessed on July 06, 2016)
  15. W. Jun, S.K. Hong, "A Study on Development of Smart Literacy Standards of Teachers and Students in Smart Learning Environments", Journal of Internet Computing and Services (JICS), Vol. 14, no. 6, pp.59-70, 2013. http://dx.doi.org/10.7472/jksii.2013.14.6.59
  16. S. Kamal, R. Ibrahim, I. Ghani, "An Improved Combined Content-similarity Approach for Optimizing Web Query Disambiguation", Journal of Internet Computing and Services (JICS), Vol. 16, no. 6, pp.79-88, 2015. http://dx.doi.org/10.7472/jksii.2015.16.6.79
  17. T. Kim, J. Y. Cho, B. G. Lee, "A Study on the Development Strategy of Smart Learning for Public Education", Journal of Internet Computing and Services (JICS), Vol. 16, no. 6, pp.123-131, 2015. http://dx.doi.org/10.7472/jksii.2015.16.6.123