Benefits of Location-Based Access Control:A Literature Study

A. van Cleeff; Wolter Pieters; Roelf J. Wieringa

doi:10.1109/GreenCom-CPSCom.2010.148

Benefits of Location-Based Access Control:A Literature Study

A. van Cleeff, Wolter Pieters, Roelf J. Wieringa

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

16 Citations (Scopus)

1643 Downloads (Pure)

Abstract

Location-based access control (LBAC) has been suggested as a means to improve IT security. By 'grounding' users and systems to a particular location, attackers supposedly have more difficulty in compromising a system. However, the motivation behind LBAC and its potential benefits have not been investigated thoroughly. To this end, we perform a structured literature review, and examine the goals that LBAC can potentially fulfill, the specific LBAC systems that realize these goals and the context on which LBAC depends. Our paper has four main contributions: first we propose a theoretical framework for LBAC evaluation, based on goals, systems and context. Second, we formulate and apply criteria for evaluating the usefulness of an LBAC system. Third, we identify four usage scenarios for LBAC: open areas and systems, hospitals, enterprises, and finally data centers and military facilities. Fourth, we propose directions for future research: (i) assessing the tradeoffs between location-based, physical and logical access control, (ii) improving the transparency of LBAC decision making, and (iii) formulating design criteria for facilities and working environments for optimal LBAC usage.

Original language	Undefined
Title of host publication	Proceedings of the 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing (CPSCom 2010)
Place of Publication	Los Alamitos, CA
Publisher	IEEE Computer Society
Pages	739-746
Number of pages	8
ISBN (Print)	978-1-4244-9779-9
DOIs	https://doi.org/10.1109/GreenCom-CPSCom.2010.148
Publication status	Published - 3 Nov 2010
Event	3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing, CPSCom 2010 - Hangzhou, China Duration: 18 Dec 2010 → 20 Dec 2010 Conference number: 3

Publication series

Name
Publisher	IEEE Computer Society

Conference

Conference	3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing, CPSCom 2010
Abbreviated title	CPSCom 2010
Country/Territory	China
City	Hangzhou
Period	18/12/10 → 20/12/10

Keywords

IR-74984
METIS-271164
LBAC
SCS-Cybersecurity
EWI-18957
contextsensitive access control
SCS-Services
Location-based access control

Access to Document

10.1109/GreenCom-CPSCom.2010.148

Cite this

@inproceedings{e07e68c6bbe74a27ab7f4d7f90d80350,

title = "Benefits of Location-Based Access Control:A Literature Study",

abstract = "Location-based access control (LBAC) has been suggested as a means to improve IT security. By 'grounding' users and systems to a particular location, attackers supposedly have more difficulty in compromising a system. However, the motivation behind LBAC and its potential benefits have not been investigated thoroughly. To this end, we perform a structured literature review, and examine the goals that LBAC can potentially fulfill, the specific LBAC systems that realize these goals and the context on which LBAC depends. Our paper has four main contributions: first we propose a theoretical framework for LBAC evaluation, based on goals, systems and context. Second, we formulate and apply criteria for evaluating the usefulness of an LBAC system. Third, we identify four usage scenarios for LBAC: open areas and systems, hospitals, enterprises, and finally data centers and military facilities. Fourth, we propose directions for future research: (i) assessing the tradeoffs between location-based, physical and logical access control, (ii) improving the transparency of LBAC decision making, and (iii) formulating design criteria for facilities and working environments for optimal LBAC usage.",

keywords = "IR-74984, METIS-271164, LBAC, SCS-Cybersecurity, EWI-18957, contextsensitive access control, SCS-Services, Location-based access control",

author = "{van Cleeff}, A. and Wolter Pieters and Wieringa, {Roelf J.}",

year = "2010",

month = nov,

day = "3",

doi = "10.1109/GreenCom-CPSCom.2010.148",

language = "Undefined",

isbn = "978-1-4244-9779-9",

publisher = "IEEE Computer Society",

pages = "739--746",

booktitle = "Proceedings of the 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing (CPSCom 2010)",

address = "United States",

note = "null ; Conference date: 18-12-2010 Through 20-12-2010",

}

van Cleeff, A, Pieters, W & Wieringa, RJ 2010, Benefits of Location-Based Access Control:A Literature Study. in Proceedings of the 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing (CPSCom 2010). IEEE Computer Society, Los Alamitos, CA, pp. 739-746, 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing, CPSCom 2010, Hangzhou, China, 18/12/10. https://doi.org/10.1109/GreenCom-CPSCom.2010.148

Benefits of Location-Based Access Control:A Literature Study. / van Cleeff, A.; Pieters, Wolter; Wieringa, Roelf J.

Proceedings of the 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing (CPSCom 2010). Los Alamitos, CA : IEEE Computer Society, 2010. p. 739-746.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Benefits of Location-Based Access Control:A Literature Study

AU - van Cleeff, A.

AU - Pieters, Wolter

AU - Wieringa, Roelf J.

N1 - Conference code: 3

PY - 2010/11/3

Y1 - 2010/11/3

N2 - Location-based access control (LBAC) has been suggested as a means to improve IT security. By 'grounding' users and systems to a particular location, attackers supposedly have more difficulty in compromising a system. However, the motivation behind LBAC and its potential benefits have not been investigated thoroughly. To this end, we perform a structured literature review, and examine the goals that LBAC can potentially fulfill, the specific LBAC systems that realize these goals and the context on which LBAC depends. Our paper has four main contributions: first we propose a theoretical framework for LBAC evaluation, based on goals, systems and context. Second, we formulate and apply criteria for evaluating the usefulness of an LBAC system. Third, we identify four usage scenarios for LBAC: open areas and systems, hospitals, enterprises, and finally data centers and military facilities. Fourth, we propose directions for future research: (i) assessing the tradeoffs between location-based, physical and logical access control, (ii) improving the transparency of LBAC decision making, and (iii) formulating design criteria for facilities and working environments for optimal LBAC usage.

AB - Location-based access control (LBAC) has been suggested as a means to improve IT security. By 'grounding' users and systems to a particular location, attackers supposedly have more difficulty in compromising a system. However, the motivation behind LBAC and its potential benefits have not been investigated thoroughly. To this end, we perform a structured literature review, and examine the goals that LBAC can potentially fulfill, the specific LBAC systems that realize these goals and the context on which LBAC depends. Our paper has four main contributions: first we propose a theoretical framework for LBAC evaluation, based on goals, systems and context. Second, we formulate and apply criteria for evaluating the usefulness of an LBAC system. Third, we identify four usage scenarios for LBAC: open areas and systems, hospitals, enterprises, and finally data centers and military facilities. Fourth, we propose directions for future research: (i) assessing the tradeoffs between location-based, physical and logical access control, (ii) improving the transparency of LBAC decision making, and (iii) formulating design criteria for facilities and working environments for optimal LBAC usage.

KW - IR-74984

KW - METIS-271164

KW - LBAC

KW - SCS-Cybersecurity

KW - EWI-18957

KW - contextsensitive access control

KW - SCS-Services

KW - Location-based access control

U2 - 10.1109/GreenCom-CPSCom.2010.148

DO - 10.1109/GreenCom-CPSCom.2010.148

M3 - Conference contribution

SN - 978-1-4244-9779-9

SP - 739

EP - 746

BT - Proceedings of the 3rd IEEE/ACM International Conference on Cyber, Physical and Social Computing (CPSCom 2010)

PB - IEEE Computer Society

CY - Los Alamitos, CA

Y2 - 18 December 2010 through 20 December 2010

ER -