Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Authentic Refinement of Semantically Enhanced Policies in Pervasive Systems

: Schütte, J.; Kuntze, N.; Fuchs, A.; Badii, A.


Rannenberg, K.:
Security and privacy - silver linings in the cloud : 25th IFIP TC 11 International Information Security Conference, SEC 2010, held as part of WCC 2010, Brisbane, Australia, September 20 - 23, 2010. Proceedings
Berlin: Springer, 2010 (IFIP advances in information and communication technology 330)
ISBN: 978-3-642-15256-6
ISBN: 3-642-15256-2
International Information Security Conference (SEC) <25, 2010, Brisbane>
World Computer Congress (WCC) <21, 2010, Brisbane>
Fraunhofer SIT ()

Pervasive systems are characterised by networked heterogeneous devices. To fulfill the security requirements of an application, these devices have to abide by certain policies. However, as the contingent interaction between devices in all possible contexts within evolving pervasive systems devices cannot be known at development time, policies cannot be dedicated to concrete security mechanisms which might later not be supported by the devices present in the network. Therefore, policies need to be expressed at a more abstract level and refined appropriately to suit applicable mechanisms at run time. In this paper we describe how security policies can be combined with ontologies to support such an automated policy refinement. As thereby policy decisions depend on semantic descriptions, the correctness of these descriptions must be verifiable at a later time for policy decisions to be evidential. We therefore propose Trusted Computing-based approaches on generating proofs of correctness of semantic descriptions deployed in policies.