Security-Enhanced OSGi service environments

Gail-Joon Ahn; Hongxin Hu; Jing Jin

doi:10.1109/TSMCC.2009.2020437

Security-Enhanced OSGi service environments

Gail-Joon Ahn, Hongxin Hu, Jing Jin

Research output: Contribution to journal › Article

15 Citations (Scopus)

Abstract

Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

Original language	English (US)
Pages (from-to)	562-571
Number of pages	10
Journal	IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews
Volume	39
Issue number	5
DOIs	https://doi.org/10.1109/TSMCC.2009.2020437
State	Published - 2009

Fingerprint

Access control

Home networks

Local area networks

Keywords

Authorization
OSGi service
Role-based management
Security

ASJC Scopus subject areas

Control and Systems Engineering
Electrical and Electronic Engineering
Computer Science Applications
Human-Computer Interaction
Information Systems
Software

Cite this

Ahn, G-J., Hu, H., & Jin, J. (2009). Security-Enhanced OSGi service environments. IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews, 39(5), 562-571. https://doi.org/10.1109/TSMCC.2009.2020437

Security-Enhanced OSGi service environments. / Ahn, Gail-Joon; Hu, Hongxin; Jin, Jing.

In: IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews, Vol. 39, No. 5, 2009, p. 562-571.

Research output: Contribution to journal › Article

Ahn, G-J, Hu, H & Jin, J 2009, 'Security-Enhanced OSGi service environments', IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews, vol. 39, no. 5, pp. 562-571. https://doi.org/10.1109/TSMCC.2009.2020437

Ahn G-J, Hu H, Jin J. Security-Enhanced OSGi service environments. IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews. 2009;39(5):562-571. https://doi.org/10.1109/TSMCC.2009.2020437

Ahn, Gail-Joon ; Hu, Hongxin ; Jin, Jing. / Security-Enhanced OSGi service environments. In: IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews. 2009 ; Vol. 39, No. 5. pp. 562-571.

@article{f80efb5520784548b42eb1ec0ae21006,

title = "Security-Enhanced OSGi service environments",

abstract = "Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.",

keywords = "Authorization, OSGi service, Role-based management, Security",

author = "Gail-Joon Ahn and Hongxin Hu and Jing Jin",

year = "2009",

doi = "10.1109/TSMCC.2009.2020437",

language = "English (US)",

volume = "39",

pages = "562--571",

journal = "IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews",

issn = "1094-6977",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "5",

}

TY - JOUR

T1 - Security-Enhanced OSGi service environments

AU - Ahn, Gail-Joon

AU - Hu, Hongxin

AU - Jin, Jing

PY - 2009

Y1 - 2009

N2 - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

AB - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

KW - Authorization

KW - OSGi service

KW - Role-based management

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=69549105973&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=69549105973&partnerID=8YFLogxK

U2 - 10.1109/TSMCC.2009.2020437

DO - 10.1109/TSMCC.2009.2020437

M3 - Article

VL - 39

SP - 562

EP - 571

JO - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

JF - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

SN - 1094-6977

IS - 5

ER -

Access to Document

10.1109/TSMCC.2009.2020437