SpringerLink - Book Chapter

Ubiquitous Authorization Scheme Based on Device Profile

Book Series

Lecture Notes in Computer Science

Publisher

Springer Berlin / Heidelberg

ISSN

0302-9743 (Print) 1611-3349 (Online)

Volume

Volume 4097/2006

Book

Emerging Directions in Embedded and Ubiquitous Computing

DOI

10.1007/11807964

2006

ISBN

978-3-540-36850-2

SecUbiq 2006 Workshop

Ubiquitous Authorization Scheme Based on Device Profile

Kevin Tham¹, Mark Looi¹ and Ernest Foo¹

(1)	Information Security Research Centre, Queensland University of Technology, GPO Box 2434, Brisbane, QLD 4001, Australia

Abstract

The range of devices that are capable of connecting to data networks has been on a rise in recent times. From the perspective of an administrator, controlling access to data networks, via these devices, usually includes the creation of separate login credentials. This leads to an administrative nightmare, from both the user and administrator’s point of view. This paper proposes a novel approach to this problem and offers a single-sign-on system, where the user’s authorisation is based on the login credentials of the user, and the profile of the device the user is using. An instance of this design is presented with SESAME, to demonstrate the usefulness of the design, and also practicality for implementation.

Kevin Tham
Email: wk.tham@qut.edu.au
URL: http://www.isrc.qut.edu.au

Mark Looi
Email: m.looi@qut.edu.au
URL: http://www.isrc.qut.edu.au

Ernest Foo
Email: e.foo@qut.edu.au
URL: http://www.isrc.qut.edu.au

Ubiquitous Authorization Scheme Based on Device Profile

SecUbiq 2006 Workshop

Fulltext Preview (Small, Large)