ISSN:
1573-7705
Keywords:
LOCATION SERVICE
;
ACCESS CONTROL POLICIES
;
DISCRETIONARY ACCESS CONTROL
;
MANDATORY ACCESS CONTROL
Source:
Springer Online Journal Archives 1860-2000
Topics:
Computer Science
Notes:
Abstract Mobile computing, wireless communications, andcheap location tracking and navigation systems have madelocation data a valuable and available commodity formany different kinds of computing applications. However, there are fears that this new wealthof personal location information will lead to newsecurity risks, to the invasion of the privacy of peopleand organizations. In this paper, we discuss security requirements faced by a location service indifferent organizational contexts. We argue thatfine-grained access control requires a symbolic locationmodel over which access control is specified. We outline the salient features of a location servicesupporting such a location model. The two main classicalsecurity models, Lampson's access matrix andBell-LaPadula's security labels, are analyzed with viewto their application to location information. Weargue that those schemes need to be generalized to dealwith multiple targets in order to be applicable tolocation information. Based on the generalized models, we propose a concrete security model forlocation information which protects both personal andorganizational privacy. We have implemented this modelover a prototype implementation of a general location service.
Type of Medium:
Electronic Resource
URL:
http://dx.doi.org/10.1023/A:1018777802208
Permalink