The Journal of Korean Institute of Communications and Information Sciences (한국통신학회논문지)

The Korean Institute of Commucations and Information Sciences (한국통신학회)
권호 표지
DOI QR코드

DOI QR Code

An Efficient Access Control Mechanism for Secure Surveillance Systems

안전한 보안 감시 시스템을 위한 효율적인 접근 제어 기법

  • Yang, Soomi (The University of Suwon, Department of Information Security) ;
  • Park, Jaesung (The University of Suwon, Department of Information Security)
  • Received : 2013.12.10
  • Accepted : 2014.03.25
  • Published : 2014.04.30
Download PDF
⟨ Previous Next ⟩

Abstract

In recent general social surveillance systems, secure access control mechanism is needed. ONVIF establishes standards for interoperability between cameras and defines web service framework for it. In this paper we present an efficient attribute based access control mechanism for surveillance system networks which follow the ONVIF standards. It accommodates web service information security techniques and provides efficient secure access control.

사회 안전 서비스 제공을 위한 보안 감시 시스템이 보편화되어, 보안 감시 시스템에 대한 접근성이 확대되고, 향상되는 만큼 안정성 확보를 위한 접근제어 기법이 요구된다. ONVIF(Open Network Video Interface Forum)에서 제정하는 표준은 보안 감시용 스마트 카메라의 호환성을 목적으로 만든 표준으로, 클라이언트에게 제공될 웹서비스의 프레임워크를 정의하고 있다. 본 논문에서는 ONVIF 표준을 따르는 보안 감시 카메라 네트워크에서 안전한 시스템 접근을 위하여 웹 서비스의 정보 보호 기법을 수용하고, 웹서비스의 안전한 제공을 위한 효율적인 접근 제어 모델을 제안 한다.

Keywords

References

  1. ONVIF(Open Network Video Interface Forum) http://www.onvif.org
  2. T. Senst, M. Patzold, R. H. Evangelio, V. Eiselein, I. Keller, and T. Sikora, "On building decentralized wide-area surveillance networks based on ONVIF," IEEE Int. Conf. AVSS, pp. 420-423, Klagenfurt, Aug.-Sept. 2011.
  3. OASIS (Organization for the Advancement of Structured Information Standards), http://www.oasis-open.org
  4. Web Services Interoperability Organization, Basic Profile Version 2.0, http://ws-i.org/Profiles/BasicProfile-2.0-2010-11-09.html, Nov. 2010.
  5. B. Shafiq, B.D.J. Joshi, E. Bertino, and A. Ghafoor, "Secure interoperation in a multidomain environment employing RBAC policies," IEEE Trans. Knowledge and Data Eng., vol. 17, no. 11, Nov. 2005.
  6. Y. Lee, D. Park, Y. Hwang, and S. You, "The role-based access control model considering context and privacy," J. KICS, vol. 34, no. 6, pp. 179-186, 2009.
  7. ISO 9594-8:2008 Information technology - Open Systems Interconnection - The Directory: Public-key and attribute certificate frameworks, 2008.
  8. NIST, "Guide to Attribute Based Access Control (ABAC) Definition and Considerations," 2013.
  9. SAML 2.0 Profile of XACML, Version 2.0, http://docs.oasis-open.org/xacml/3.0/xacml-profile-saml2.0-v2-spec-cd-1-en.html, Apr. 2009.
  10. G. Kim, D. Won, and U. Kim, "An Extended SAML Delegation Model Based on Multi-Agent for Secure Web Services," J. KIISC, pp. 111-122, Aug. 2008.
  11. OASIS XACML Version 3.0, http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.pdf, Jan. 2013.
  12. J. Kim and S. U. Lee, "Conflict Detection Algorithm for XACML Policies," in Proc. KISS, pp. 550-552, Jun. 2013.
  13. D. Choi, D. Kim and S. Yang, "Design and Implementation of Intelligent Surveillance Systems for Secure and Efficient Public Service Provision," in Proc. KICS, pp. 20-21, 2014
  14. S. Oh, S. Moon and S. Choi, "Intelligence Security and Surveillance System in Sensor Network Environment Using Integrated Heterogeneous Sensors," in Proc. KICS, pp. 551-562, 2014

Cited by

  1. Optimal Configuration of Surveillance Camera System vol.16, pp.7, 2018, https://doi.org/10.14801/jkiit.2018.16.7.15