Abstract

Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

Original languageEnglish (US)
Pages (from-to)562-571
Number of pages10
JournalIEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews
Volume39
Issue number5
DOIs
StatePublished - 2009

Fingerprint

Access control
Home networks
Local area networks

Keywords

  • Authorization
  • OSGi service
  • Role-based management
  • Security

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Electrical and Electronic Engineering
  • Computer Science Applications
  • Human-Computer Interaction
  • Information Systems
  • Software

Cite this

Security-Enhanced OSGi service environments. / Ahn, Gail-Joon; Hu, Hongxin; Jin, Jing.

In: IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews, Vol. 39, No. 5, 2009, p. 562-571.

Research output: Contribution to journalArticle

@article{f80efb5520784548b42eb1ec0ae21006,
title = "Security-Enhanced OSGi service environments",
abstract = "Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.",
keywords = "Authorization, OSGi service, Role-based management, Security",
author = "Gail-Joon Ahn and Hongxin Hu and Jing Jin",
year = "2009",
doi = "10.1109/TSMCC.2009.2020437",
language = "English (US)",
volume = "39",
pages = "562--571",
journal = "IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews",
issn = "1094-6977",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
number = "5",

}

TY - JOUR

T1 - Security-Enhanced OSGi service environments

AU - Ahn, Gail-Joon

AU - Hu, Hongxin

AU - Jin, Jing

PY - 2009

Y1 - 2009

N2 - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

AB - Today's home and local-area network environments consist of various types of personal equipments, network devices, and corresponding services. Since such prevalent home network environments frequently deal with private and sensitive information, it is crucial to legitimately provide access control for protecting such emerging environments. As a result, the open services gateway initiative (OSGi) attempted to address this critical issue. However, the current OSGi authorization mechanism is not rigorous enough to fulfill security requirements involved in dynamic OSGi environments. In this paper, we provide a systematic way to adopt a role-based access control (RBAC) approach in OSGi environments. We demonstrate how our authorization framework can achieve important RBAC features and enhance existing primitive access control modules in OSGi service environments. Also, we describe a proof-of-concept prototype of the proposed framework to discuss the feasibility of our approach using an open source implementation of OSGi framework known as Knopflerfish.

KW - Authorization

KW - OSGi service

KW - Role-based management

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=69549105973&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=69549105973&partnerID=8YFLogxK

U2 - 10.1109/TSMCC.2009.2020437

DO - 10.1109/TSMCC.2009.2020437

M3 - Article

VL - 39

SP - 562

EP - 571

JO - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

JF - IEEE Transactions on Systems, Man and Cybernetics Part C: Applications and Reviews

SN - 1094-6977

IS - 5

ER -