Supporting Internet-Based Location for Location-Based Access Control in Enterprise Cloud Storage Solution (original) (raw)

Advanced Information Networking and Applications

Abstract

The emergence of the Internet allows the enterprise to implement telework policy in order for the employee to work and access company file anytime, anywhere. But it raises the challenge for the enterprise to enforce physical access control on enterprise’s files to the employee outside the enterprise network. One of the solutions for the enterprise to enforce physical access control of its files is implementing location-based access control (LBAC) model to allow the employee to access a file at the pre-determined location. We propose an extension of the LBAC model to include Internet-based location as an input for location constraint used for the access control decision and authorization where Internet-connected device is mapped into a physical location using the IP geolocation method. Our approach could be used as an alternative user’s location determination and location verification methods, especially for mobile devices with minimum self-geolocation capability. We implement our proposal into proof-of-concept enterprise cloud storage solution called CloudRAID for Business (CfB) by combining Internet-based geolocation service, delay-based measurement technique, and open source information. Our evaluation’s result shows that our implementation is able to grant user access control of the system once the user’s location is in the pre-determined location.

Ankit Chauhan hasn't uploaded this paper.

Let Ankit know you want this paper to be uploaded.

Ask for this paper to be uploaded.