Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
Springer Nature Link
Log in

Different Smartcard-Based Approaches to Physical Access Control

  • Conference paper
  • First Online:
Infrastructure Security (InfraSec 2002)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2437))

Included in the following conference series:

  • 818 Accesses

Abstract

Although the basic function of physical access control can be considered simple, that is, to allow authorized personnel to gain access to buildings and deny unauthorized entry, the problem should not be so drastically simplified. In this work, we present two solutions to this problem that make use of special devices named TICA and smartcards. These proposals follow different approaches to manage permissions and authorizations. On the one hand, we present a centralized and on-line solution that makes use of one central database containing the privileges assigned to every user. On the other hand, we describe a system where the authorization-related information is managed in a distributed way. It is an off-line solution based on a RBAC (Role Based Access Control) model that has been designed using authorization certificates.

Partially supported by TIC2000-0198-P4-04 project (ISAIAS), and by 2I02SIU0005 project (m-PISCIS)

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. A. O. Alan, P. Freier, and P. C. Kocher. The SSL Protocol Version 3.0, 1996. Internet Draft.

    Google Scholar 

  2. T. Aura. On the structure of delegation networks. In Proc. 11th IEEE Computer Security Foundations Workshop, pages 14–26, MA USA, June 1998. IEEE Computer Society Press.

    Google Scholar 

  3. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis. The role of trust management in distributed systems security. In Secure Internet Programming: Security Issues for Distributed and Mobile Objects, volume 1603 of LNCS, pages 185–210. Springer, 1999.

    Google Scholar 

  4. J. Callas, L. Donnerhacke, H. Finney, and R. Thayer. OpenPGP Message Format, 1998. Request For Comments (RFC) 2440.

    Google Scholar 

  5. O. Canovas and A. F. Gomez. A Distributed Credential Management System for SPKI-Based Delegation Systems. In Proceedings of 1st Annual PKI Research Workshop, Gaithersburg MD, USA, April 2002.

    Google Scholar 

  6. Intel Corporation. Common Data Security Architecture (CDSA). World Wide Web, http://developer.intel.com/ial/security, 2001.

  7. C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylonen. SPKI certificate theory, September 1999. Request For Comments (RFC) 2693.

    Google Scholar 

  8. J.E. Elien. Certificate discovery using spki/sdsi 2.0 certificates. Master’s thesis, Massachusetts Institue of Technology, May 1998.

    Google Scholar 

  9. Open Card Forum. Open Card Framework. World Wide Web, http://www.opencard.org, 2001.

  10. J. Ferrari, S. Poh, R. Mackinnon, and L. Yatawara. Smart Cards: A Case Study. IBM RedBooks, http://www.redbooks.ibm.com/pubs/pdfs/redbooks/sg245239.pdf, October 1998.

  11. R. Housley, W. Ford, and D. Solo. Internet Public Key Infrastructure, Part I: X.509 Certificate and CRL Profile, January 1999. Request for Comments (RFC) 2459.

    Google Scholar 

  12. M. Myers, R. Ankney, A. Malpani, S. Galperin, and C. Adams. OCSP: Online Certificate Status Protocol, June 1999. Request For Comments (RFC) 2560.

    Google Scholar 

  13. Sun microsystems. Java Card 2.1.1 Application Programming Interface. World Wide Web, http://java.sun.com/products/javacard/javacard21.html, May 2000.

  14. Sun microsystems. Java Card 2.1.1 Runtime Environment (JCRE) Specification. World Wide Web, http://java.sun.com/products/javacard/javacard21.html, May 2000.

  15. Sun microsystems. Java Card 2.1.1 Virtual Machine Specification. World Wide Web, http://java.sun.com/products/javacard/javacard21.html, May 2000.

  16. M. Myers. Revocation: Options and challenges. In Proceedings of Financial Cryptography 98, volume 1465 of LNCS, pages 165–171. Springer-Verlag, 1998.

    Google Scholar 

  17. University of Murcia. KRONOS Project. World Wide Web, http://ants.dif.um.es/kronos, 2001.

  18. R. Rivest and B. Lampson. SDSI: A simple distributed security infrastructure.

    Google Scholar 

  19. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control models. IEEE Computer, 29(2), February 1996.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Engineering, Spain

    Óscar Cánovas

  2. Department of Information and Communications Engineering, University of Murcia, Spain

    Antonio F. Gómez, Humberto Martínez & Gregorio Martínez

Authors
  1. Óscar Cánovas
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Antonio F. Gómez
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Humberto Martínez
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Gregorio Martínez
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. University of Wisconsin-Milwaukee, 53201, Milwaukee, WI, USA

    George Davida

  2. TechTegrity LLC, P.O. Box 2125, 07091, Westfield, NJ, USA

    Yair Frankel

  3. Hewlett-Packard Laboratories, Filton Road, Stoke Gifford, BS34 8QZ, Bristol, UK

    Owen Rees

Rights and permissions

Reprints and permissions

Copyright information

© 2002 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Cánovas, Ó., Gómez, A.F., Martínez, H., Martínez, G. (2002). Different Smartcard-Based Approaches to Physical Access Control. In: Davida, G., Frankel, Y., Rees, O. (eds) Infrastructure Security. InfraSec 2002. Lecture Notes in Computer Science, vol 2437. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45831-X_15

Download citation

  • DOI: https://doi.org/10.1007/3-540-45831-X_15

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-44309-4

  • Online ISBN: 978-3-540-45831-9

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation