Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2006.13C.5.549

Design and Implementation of Access Control System Based on XACML in Home Networks  

Lee, Jun-Ho (한국전자통신연구원 정보보호연구단 홈네트워크보안연구팀)
Lim, Kyung-Shik (경북대학교 전자전기컴퓨터학부)
Won, Yoo-Jae (한국정보보호진흥원 IT 기반보호단 응용기술팀)
Publication Information
The KIPS Transactions:PartC / v.13C, no.5, 2006 , pp. 549-558 More about this Journal
Abstract
For activating home network, the security service is positively necessary and especially the access control supports secure home network services and differentiated services. But, the existing security technology for home network seldom consider access control or has a architecture to be dependent on specific middleware. Therefore, in this paper we propose a scheme to support integrated access control in home network to use XACML, access control standard of next generation, to have compatability and extensibility and we design and implement XACML access control system based on this. we also had m access control experiment about various policy to connect developed XACML access control system with the UPnP proxy based on OSGi in order to verify compatability with existing home network system.
Keywords
XACML; Access Control; Home Network;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Anne Anderson, 'Java Access Control Mechanisms,' Technical report, Sun Microsystems, March 2002, http://lists.oasis-open.org/archives/xacml/20020l/pdf00000.pdf
2 A. Herzog, N. Shahmehri, A. Bednarski, I. Chisalita , U. Nordqvist, L. Saldamli, D. Szentivanyi, M. Ostring, 'Security Issue in E-Home Network and Software Infrastructures,' Proceedings of the 3rd Conference on Computer Science and Systems Engineering in Linkoping. Norrkoping, Sweden. Pages: 155-161. Linkopings universitet. 2001
3 G. Steven and Ungar, 'Home Network Security.'Proceedings of 2002 IEEE 4th International Workshop on Network appliances, pp.41-48, January 15-16, 2002   DOI
4 UPnP Forum, Understanding UPnP, June 2000, http://www.upnp.org/download/UPNP_UnderstandingUPNP.doc
5 Sun Microsystems, Jini Architecture Specification, December 2001, http://www.jini.org/
6 Sony, Specification of the Home Audio/Video Interoperability Architecture Version 1.0, January 2000, http://www.havi.org
7 OSGi, Open Service Gateway Initiative 1.0, May 2000, http://www.osgi.org/
8 UPnP Forum, Device Security and Security Console v1.0, Nomember 2003, http://www.upnp.org/standardizeddcps/security.asp
9 Dae-Ha Park. Doo-Kwon Baik, 'OSSEM a security model for OSGi service framework,' SCI 2003. 7th World Multiconference on Systemics, Cybernetics and Informatics Proceedings. IIIS. Part Vol.11, 2003, pp.189-94 Vol.11. Orlando, FL, USA
10 OASIS, XACML 1.0 Specification, February 2003, http://www.oasis-open.org/committees/download.php/2406/oasis -xacml-1.0.pdf
11 OASIS, SAML 1.1 Specification, 2 September 2003, http://www.oasis-open.org/committees/download.php/3406/oasis-sstc-saml-core-1.1pdf
12 NSA, 'Security Enhanced Linux,' http://www.nsa.gov/selinux/