Journal: International Journal on Computer Science and Information System (IJCSIS)
The basic notion of Location-Aware Access Control (LAAC) is to evaluate the current position of a mobile user as provided by a locating system like GPS when making the decision if a user’s request to perform a particular operation on a particular resource under the control of an information system should be granted or denied. LAAC is a mean to forbid the access to computer resources when the mobile user stays at a place where it is not reasonable or not safe enough to access the respective resources. For example, using this approach a policy could be enforced that demands that a confidential document (resource) can only be read (operation) while staying on the premises of a particular company. The aim of this paper is to give an overview on works in the field of LAAC. The special focus is on Access Control Models (ACM) which are the data models needed to formulate and maintain location-aware access control policies.