Please use this identifier to cite or link to this item:
https://hdl.handle.net/11147/5777
Full metadata record
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Abdella, Juhar Ahmed | - |
dc.contributor.author | Özuysal, Mustafa | - |
dc.contributor.author | Tomur, Emrah | - |
dc.date.accessioned | 2017-06-15T11:23:04Z | - |
dc.date.available | 2017-06-15T11:23:04Z | - |
dc.date.issued | 2016-12 | - |
dc.identifier.citation | Abdella, J. A., Özuysal, M., and Tomur, E. (2016). CA-ARBAC: privacy preserving using context-aware role-based access control on Android permission system. Security and Communication Networks, 9(18), 5977-5995. doi:10.1002/sec.1750 | en_US |
dc.identifier.issn | 1939-0114 | - |
dc.identifier.issn | 1939-0122 | - |
dc.identifier.uri | http://doi.org/10.1002/sec.1750 | - |
dc.identifier.uri | http://hdl.handle.net/11147/5777 | - |
dc.description.abstract | Existing mobile platforms are based on manual way of granting and revoking permissions to applications. Once the user grants a given permission to an application, the application can use it without limit, unless the user manually revokes the permission. This has become the reason for many privacy problems because of the fact that a permission that is harmless at some occasion may be very dangerous at another condition. One of the promising solutions for this problem is context-aware access control at permission level that allows dynamic granting and denying of permissions based on some predefined context. However, dealing with policy configuration at permission level becomes very complex for the user as the number of policies to configure will become very large. For instance, if there are A applications, P permissions, and C contexts, the user may have to deal with A × P × C number of policy configurations. Therefore, we propose a context-aware role-based access control model that can provide dynamic permission granting and revoking while keeping the number of policies as small as possible. Although our model can be used for all mobile platforms, we use Android platform to demonstrate our system. In our model, Android applications are assigned roles where roles contain a set of permissions and contexts are associated with permissions. Permissions are activated and deactivated for the containing role based on the associated contexts. Our approach is unique in that our system associates contexts with permissions as opposed to existing similar works that associate contexts with roles. As a proof of concept, we have developed a prototype application called context-aware Android role-based access control. We have also performed various tests using our application, and the result shows that our model is working as desired. | en_US |
dc.language.iso | en | en_US |
dc.publisher | Hindawi Publishing Corporation | en_US |
dc.relation.ispartof | Security and Communication Networks | en_US |
dc.rights | info:eu-repo/semantics/openAccess | en_US |
dc.subject | Access control | en_US |
dc.subject | Context Aware Access Control | en_US |
dc.subject | Permissions | en_US |
dc.subject | Android permission system | en_US |
dc.subject | Software prototyping | en_US |
dc.subject | Mobile phones | en_US |
dc.title | CA-ARBAC: privacy preserving using context-aware role-based access control on Android permission system | en_US |
dc.type | Article | en_US |
dc.authorid | TR21345 | en_US |
dc.institutionauthor | Abdella, Juhar Ahmed | - |
dc.institutionauthor | Özuysal, Mustafa | - |
dc.institutionauthor | Tomur, Emrah | - |
dc.department | İzmir Institute of Technology. Computer Engineering | en_US |
dc.identifier.volume | 9 | en_US |
dc.identifier.issue | 18 | en_US |
dc.identifier.startpage | 5977 | en_US |
dc.identifier.endpage | 5995 | en_US |
dc.identifier.wos | WOS:000398221800084 | en_US |
dc.identifier.scopus | 2-s2.0-85016585170 | en_US |
dc.relation.publicationcategory | Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı | en_US |
dc.identifier.doi | 10.1002/sec.1750 | - |
dc.relation.doi | 10.1002/sec.1750 | en_US |
dc.coverage.doi | 10.1002/sec.1750 | en_US |
dc.identifier.scopusquality | N/A | - |
item.openairecristype | http://purl.org/coar/resource_type/c_18cf | - |
item.fulltext | With Fulltext | - |
item.openairetype | Article | - |
item.languageiso639-1 | en | - |
item.cerifentitytype | Publications | - |
item.grantfulltext | open | - |
crisitem.author.dept | 03.04. Department of Computer Engineering | - |
Appears in Collections: | Computer Engineering / Bilgisayar Mühendisliği Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection |
CORE Recommender
SCOPUSTM
Citations
11
checked on Nov 29, 2024
WEB OF SCIENCETM
Citations
7
checked on Oct 26, 2024
Page view(s)
66,090
checked on Dec 2, 2024
Download(s)
460
checked on Dec 2, 2024
Google ScholarTM
Check
Altmetric
Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.