This paper was written when Liang Gu was a PhD student in Peking University. The revision was carried out when he became a postdoctoral associate in Yale University in 2011.
Special Issue Paper
Context-aware usage control for web of things
Article first published online: 15 FEB 2012
Copyright © 2012 John Wiley & Sons, Ltd.
Security and Communication Networks
Volume 7, Issue 12, pages 2696–2712, December 2014
How to Cite
2014), Context-aware usage control for web of things, Security Comm. Networks, 7, pages 2696–2712, doi: 10.1002/sec.424, , , and (
- Issue published online: 27 NOV 2014
- Article first published online: 15 FEB 2012
- context awareness;
- usage control;
- Internet of Things;
- Web of Things
The Web of Things (WoT), inherited from the Internet of Things (IoT), encapsulates functionalities into publishable services on the Web to enable the IoT a seamless integration with the Web. The openness of the Web, in turn, directly exposes WoT to existing attacks from the Web. In addition, WoT possesses characteristics of high security and privacy concerns, mobility, and limited capabilities, which require specific and additional security and privacy protection beyond existing mechanisms. More importantly, WoT is inherently connected to its context, so context information must be taken into account in its security and privacy measures.
To address these challenges, we propose a context-aware usage control model (ConUCON), which leverages the context information to enhance data, resource, and service protection for WoT. On the basis of ConUCON, we also design and implement a context-aware usage control framework on the middleware layer in our ongoing SmartHome project, to provide security and privacy protection. ConUCON is designed specifically to express the context-aware usage policy specification, such that security and privacy requirements can be easily specified and enforced with the proposed model and framework. Finally, we apply ConUCON to a remote appliance management prototype, as a case study, to demonstrates its feasibility in a real environment. Copyright © 2012 John Wiley & Sons, Ltd.