A Security Model for Online Accessing to Shared Devices

Accessing to online devices is one of the promising ways to improve devices' utility and efficiency. Due to the shared device being connected to the Internet, it may be exposed to attacks and it also challenges the conventional access control model. In this paper, we analyze and compare conventional objects and shared devices. It presents shared devices characteristics, such as time-dependence, special privileges, access capacity and process-dependence. According to the four key characteristics and role-based access control model, we introduce several concepts such as dynamic actor, permanent role and device access policy, etc. A remote devices access control (RDAC) model is presented. This model satisfies the requirement for describing online devices access control needs. Based on RDAC, we designed and implemented a security framework for remote devices access (SFRDAC). In the implementation of SFRDAC, we use proxy authentication to isolate the business logics; use XML to describe users' access control profile; use digital signature and XML encryption standard to secure the access control message. At the end, a case study is given