Context-aware access control model for services provided from cloud computing

Abstract

Since computing devices in IoT tend to have only limited computational resources, to provide enrich context-aware services, e.g., location-aware user assistant services, from IoT environments, such services should be offloaded to be executed on server-sides, including cloud computing platforms. However, there are differences between access control models in context-aware services and cloud computing platforms, where the former needs context-aware access models and the latter widely uses role/subject-based access control models. This paper aims to bridging the models. We present a model for spatially specifying containment relationships of persons, physical entities, spaces, and computers to specify contextual information about the real world. Our approach connects between the world model and services offloaded to cloud computing as an access control mechanism. This paper presents the basic notion of the model and its prototype implementation.