Abstract
New portable computers and wireless communication technologies have significantly enhanced mobile computing. The emergence of network technology that supports user mobility and universal network access has prompted new requirements and concerns, especially in the aspects of access control and security. In this paper, we propose a new approach using authorisation agents for cross-domain access control in a mobile computing environment. Our framework consists of three main components, namely centralised authorisation servers, authorisation tokens and authorisation agents. An infrastructure of centralised authorisation servers and application servers from different domains is proposed for supporting trust propagation to mobile hosts instantaneously. While the authorisation token is a form of static capability, the authorisation agent on the client side can be regarded as a dynamic capability to provide the functionality in client-server interactions. It works collaboratively with remote servers to provide authorisation service with finer access granularity and higher flexibility.
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Ashley P. & Vandenwauver M. (1999). Practical Intranet Security: An Overview of the State of the Art and Available Technologies, Kluwer Academic Publishers.
Au R., Looi M. & Ashley P. (2000) Cross-Domain One-Shot Authorisation Using Smart Cards. Proceedings of 7th ACM Conference on Computer and Communication Security, pages 220–227.
Au R., Looi M. & Ashley P. (2001) Automated Cross-organisational Trust Es tablishment on Extranets. Proceedings of the Workshop on Information Technology for Virtual Enterprises, pages 3–11.
Dallas Semiconductor Corp. (1995) DS1954 Technical Information-Cryptographic iButton. Available at URL: http://www.iButton.com
Molva R. & Samfat D. & Tsudik G. (1994) Authentication of Mobile Users. IEEE Network, vol 26, iss 2, pages 26–34.
Necula G. & Lee P. (1998) Safe, Untrusted Agents using proof-Carrying Code. Mobile Agents and Security, Lecture Notes in Computer Science 1419, pages 92–113.
Nicomette V. & Deswarte Y. (1997). An Authorisation Scheme For Distributed Object Systems, In Proceedings of Symposium on Security and Privacy IEEE.
Oppliger R. (1999). Security Issues Related to Mobile Code and Agent-Based Systems. Computer Communications, vol 22, pages 1165–1170.
Sander T. & Tschudin C. (1997) Towards Mobile Cryptography. International Computer Security Institute (ICSI) Technical Report 97-049.
Varadharajan V. (2000). Security Enhanced Mobile Agents. Proceedings of 7th ACM Conference on Computer and Communication Security, pages 200–209.
Vigna G. (1998). Cryptographic Traces for Mobile Agents. Mobile Agents and Security, Springer-Verlag, Lecture Notes in Computer Science 1419, pages 137–153.
White J.E. (1994). Telescript Technology: The Foundation for the Electronic Marketplace. White Paper by General Magic Inc, Sunnyvale CA, USA.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Au, R., Looi, M., Ashley, P., Seet, L.T. (2002). Secure Authorisation Agent for Cross-Domain Access Control in a Mobile Computing Environment. In: Kim, K. (eds) Information Security and Cryptology — ICISC 2001. ICISC 2001. Lecture Notes in Computer Science, vol 2288. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45861-1_28
Download citation
DOI: https://doi.org/10.1007/3-540-45861-1_28
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-43319-4
Online ISBN: 978-3-540-45861-6
eBook Packages: Springer Book Archive