Publication Type

Conference Proceeding Article

Version

acceptedVersion

Publication Date

12-2008

Abstract

Satisfying the varied privacy preferences of individuals, while exposing context data to authorized applications and individuals, remains a major challenge for context-aware computing. This paper describes our experiences in building a middleware component, the context privacy engine (CPE), that enforces a role-based, context-dependent privacy model for enterprise domains. While fundamentally an ACL-based access control scheme, CPE extends the traditional ACL mechanism with usage control and context constraints. This paper focuses on discussing issues related to managing and evaluating context-dependent privacy policies. Extensive experimental studies with a production-grade implementation and real-life context sources demonstrate that the CPE can support a large number of concurrent requests. The experiments also show valuable insight on how context-retrieval can affect the privacy evaluation process.

Keywords

Access control schemes, Context constraints, Context-aware

Discipline

Software Engineering

Research Areas

Software and Cyber-Physical Systems

Publication

EUC 2008: Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing, December 17-20, Shanghai, China

First Page

94

Last Page

100

ISBN

9780769534923

Identifier

10.1109/EUC.2008.130

Publisher

IEEE Computer Society

City or Country

Los Alamitos, CA

Copyright Owner and License

Authors

Additional URL

https://doi.org/10.1109/EUC.2008.130

Download

Share

COinS