| Abstract [eng] |
Nowadays wireless networks are widespread and their usage is steadily increasing. Therefore the spread of wireless networks increases a prevalence of hacking or unauthorized access risks, thus complicating an access control. An access to wireless networks is not always properly protected, secured and managed. Widespread of the wireless networks and wide usage of the mobile devices creates the need of such applications and services that can use time and location information to improve their existing functionality. This type of software can be useful in different domains, i.e. for business. Also user location information and connection time can be used to improve protection of network access control. To support above mentioned functionality it would be required more complex access control systems. And there is growing need to modify existing access control models to support advanced features. This work examines the RBAC model extensions implementations with time and location information. Designed and developed centralized network access control system based on time (temporal) and location (spatial) information – an extended RBAC model. RBAC model extensions also are related to system functioning in wireless network specifics. The system allows distributing of access rights to the wireless network users based on the location and time when attempt to gain network access has occurred. Authorization result for network user will depend on actual location of the user and current date or time. The system supports Radius protocol, which provides compatibility with various network devices. Work including experimental studies with the developed system that demonstrates the operation of the system characteristics under different conditions. Test cases designed in such way, where different numbers of users are trying to gain access simultaneously, and in case of successful connections accounting sessions will be simulated. The work also provides presentation of the proposals to reduce the number of queries to the location positioning system, at the same time supporting time and location based RBAC model specifics. |
