Security-Enhanced OSGi service environments

Gail-Joon Ahn; Hongxin Hu; Jing Jin

doi:10.1109/TSMCC.2009.2020437

Security-Enhanced OSGi service environments

Gail-Joon Ahn, Hongxin Hu, Jing Jin

Research output: Contribution to journal › Article › peer-review

15 Scopus citations

Abstract

Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

Original language	English (US)
Pages (from-to)	562-571
Number of pages	10
Journal	IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews
Volume	39
Issue number	5
DOIs	https://doi.org/10.1109/TSMCC.2009.2020437
State	Published - 2009

Keywords

Authorization
OSGi service
Role-based management
Security

ASJC Scopus subject areas

Control and Systems Engineering
Software
Information Systems
Human-Computer Interaction
Computer Science Applications
Electrical and Electronic Engineering

Access to Document

10.1109/TSMCC.2009.2020437

Fingerprint Dive into the research topics of 'Security-Enhanced OSGi service environments'. Together they form a unique fingerprint.

Cite this

@article{f80efb5520784548b42eb1ec0ae21006,

title = "Security-Enhanced OSGi service environments",

abstract = "Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.",

keywords = "Authorization, OSGi service, Role-based management, Security",

author = "Gail-Joon Ahn and Hongxin Hu and Jing Jin",

note = "Funding Information: Manuscript received August 24, 2008; revised January 7, 2009. First published May 15, 2009; Current version published August 19, 2009. This work was supported in part by the funds provided by the National Science Foundation under Grant NSF-IIS-0242393 and the Department of Energy Early Career Principal Investigator Award under Grant DE-FG02-03ER25565. This paper was recommended by Associate Editor N. Wu.",

year = "2009",

doi = "10.1109/TSMCC.2009.2020437",

language = "English (US)",

volume = "39",

pages = "562--571",

journal = "IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews",

issn = "1094-6977",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "5",

}

TY - JOUR

T1 - Security-Enhanced OSGi service environments

AU - Ahn, Gail-Joon

AU - Hu, Hongxin

AU - Jin, Jing

N1 - Funding Information: Manuscript received August 24, 2008; revised January 7, 2009. First published May 15, 2009; Current version published August 19, 2009. This work was supported in part by the funds provided by the National Science Foundation under Grant NSF-IIS-0242393 and the Department of Energy Early Career Principal Investigator Award under Grant DE-FG02-03ER25565. This paper was recommended by Associate Editor N. Wu.

PY - 2009

Y1 - 2009

N2 - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

AB - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

KW - Authorization

KW - OSGi service

KW - Role-based management

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=69549105973&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=69549105973&partnerID=8YFLogxK

U2 - 10.1109/TSMCC.2009.2020437

DO - 10.1109/TSMCC.2009.2020437

M3 - Article

AN - SCOPUS:69549105973

VL - 39

SP - 562

EP - 571

JO - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

JF - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

SN - 1094-6977

IS - 5

ER -