Security Infrastructure and Management
The Ericsson e-box system is a very illustrative example of a type of service platform that will probably become very common in the future,
provided that the security is both efficient and sufficient. This project
concentrates on the access control structures which involve both
security and management. The project includes the study and design of a framework that can be used for modeling a complex infrastructure for
such platforms where many parties are involved in the communication, and there are high demands on the service management for differentiated
services. Trust, collaboration and competition are only a few of the factors related to relationships between the parties which add to the
complexity of the reality model.
Role-based access control, RBAC, is a paradigm that meets modern demands on integration and ease of administration for access control.
RBAC is also appealing, as the main idea is intuitively simple and easy to grasp; permissions are given to roles, and the roles are assigned to
users as necessary. However, there has been a gap between the theoretical model of RBAC which tends to easily grow complex and the
practical solutions existing today, as they illustrate solutions to simplistic problems. We aim to identify the theoretical and
practical trade-offs and suggest a model (possibly of RBAC) that overcomes the existing problems.
In this project we collaborate with Ericsson Radio Systems in Link\"{o}ping. Currently two Ph.D. students are involved in this project. They are
studying the problem area from two different angles, i.e. service providers and householders.
Graduate students: Claudiu Duma, Almut Herzog.
Supervisor: Nahid Shahmehri.
