TY - JOUR
T1 - Security-Enhanced OSGi service environments
AU - Ahn, Gail-Joon
AU - Hu, Hongxin
AU - Jin, Jing
N1 - Funding Information:
Manuscript received August 24, 2008; revised January 7, 2009. First published May 15, 2009; Current version published August 19, 2009. This work was supported in part by the funds provided by the National Science Foundation under Grant NSF-IIS-0242393 and the Department of Energy Early Career Principal Investigator Award under Grant DE-FG02-03ER25565. This paper was recommended by Associate Editor N. Wu.
PY - 2009
Y1 - 2009
N2 - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.
AB - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.
KW - Authorization
KW - OSGi service
KW - Role-based management
KW - Security
UR - http://www.scopus.com/inward/record.url?scp=69549105973&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=69549105973&partnerID=8YFLogxK
U2 - 10.1109/TSMCC.2009.2020437
DO - 10.1109/TSMCC.2009.2020437
M3 - Article
AN - SCOPUS:69549105973
VL - 39
SP - 562
EP - 571
JO - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews
JF - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews
SN - 1094-6977
IS - 5
ER -