ConXsense: Context sensing for adaptive usable access control

Event type: 
Guest lecture
Event time: 
16.10.2013 - 12:15 - 14:00
Lecturer : 
Markus Miettinen, TU Darmstadt
Place: 
Exactum C222
Description: 

You are warmly welcome to Markus Miettinen's (TU Darmstadt) guest
lecture this Wednesday at noon at C222:

ConXsense - Context Sensing for Adaptive Usable Access Control

The increasing use of contextual features and context data in
contemporary smartphones poses challenges to the management of users'
security and privacy settings. On one hand, contextual factors need to
be integrated into the access control decisionmaking to support
context-aware access control. On the other hand, also the access of
applications to context information needs to be controlled in order to
protect the user's privacy. Previous solutions often require either
users to laboriously specify detailed policies for this or they rely
on pre-specified, non-personalized and error-prone policies for very
generic context classes. Recent approaches attempt to address these
deficiencies by learning from context data. Our approach improves on
this by using context data to automatically estimate the sensitivity
and safety of the user’s context and using the estimates for
dynamically enforcing access control rules in a personalized,
non-intrusive and usable manner.

I will present ConXsense, a framework utilizing context sensing for
easy-to-use and adaptive context-aware access control for mobile
devices. In particular, we address two smartphone-related problem
scenarios for context-aware access control: 1) how to prevent
unauthorized apps (like sensory malware) from gathering information
about the context of a mobile device (contextual privacy) and 2) how
to protect the data and applications on the device from physical
threats in the context (like thieves or device misuse by others).

About the speaker:

Markus Miettinen received his M.Sc. degree from the University of
Helsinki, Department of Computer Science, after which pursued a career
in industrial research at the Nokia Research Center in Helsinki,
mostly focusing on topics related to computer security, data analysis,
and the application of data analysis methods for security applications
in mobile networks and mobile computing. After that he has worked at
Nokia Research Center Lausanne in Switzerland and the Fraunhofer
Institute for Secure Information technology (Fraunhofer SIT) in
Darmstadt, Germany where his main research activities were related to
contextual sensing, data analysis for context-awareness and
context-aware security. Recently he has joined the System Security Lab
at the Technische Universität Darmstadt, where he is part of the Intel
Collaborative Research Institute for Secure Computing (ICRI-SC) at the
Center for Advanced Security Research Darmstadt (CASED).

http://www.trust.informatik.tu-darmstadt.de/people/markus-miettinen
Twitter: @mmietti

14.10.2013 - 16:34 Sini S Ruohomaa
14.10.2013 - 16:32 Sini S Ruohomaa