Trust-Based Security in Pervasive Computing Environments

Traditionally, stand-alone computers and small networks rely on user authentication and access control to provide security. These physical methods use system-based controls to verify the identity of a person or process, explicitly enabling or restricting the ability to use, change, or view a computer resource. However, these strategies are inadequate for the increased flexibility that distributed networks such as the Internet and pervasive computing environments require because such systems lack central control and their users are not all predetermined. Mobile users expect to access locally hosted resources and services anytime and anywhere, leading to serious security risks and access control problems. We propose a solution based on trust management that involves developing a security policy, assigning credentials to entities, verifying that the credentials fulfill the policy, delegating trust to third parties, and reasoning about users' access rights. This architecture is generally applicable to distributed systems but geared toward pervasive computing environments.
Date: December 01, 2001
Book Title: IEEE Computer
Type: Article
Google scholar: wUayzVX0FcEJ
Google citations: 139 citations
Downloads: 4760

Has 2 soft copies


size 243777 bytes

size 266475 bytes

Bibtex


@Article{Trust_Based_Security_in_Pervasive_Comput,
  author = "Lalana Kagal and Tim Finin and Anupam Joshi",
  title = "{Trust-Based Security in Pervasive Computing Environments}",
  month = "December",
  year = "2001",
  journal = " IEEE Computer",
}