Author:
Heinz-Josef Eikerling
Affiliation:
Siemens SBS, C-LAB, Germany
Keyword(s):
Personalization, Distributed Data Management, Profiles, Security.
Related
Ontology
Subjects/Areas/Topics:
Access Control
;
Data Engineering
;
Databases and Data Security
;
Information and Systems Security
;
Internet Technology
;
Multimedia and User Interfaces
;
Personalized Web Sites and Services
;
System Integration
;
Web Information Systems and Technologies
;
Web Interfaces and Applications
;
Wireless Applications
;
XML and Data Management
Abstract:
Personalisation of web-centric user environments and applications to contextual information, as well as to the needs and preferences of the user is a contemporary concern. The involved personalisation data is usually captured by profiles and is sensitive to security concerns. Therefore mechanisms need to be devised to maintain privacy and data integrity, and to ensure proper access control. Within this paper we describe a system which handles access control by the definition of policies. The access control engine is a key component within the set of interacting services making up the profile access manager. Through this approach the according profiles can be potentially dispersed over different types of physical storage devices and access control can be featured quite independently of the actual storage type. Particularly, the integration of the different storage devices is facilitated which permits to bind locally stored profile data to data stored elsewhere (due to space or constra
ints with respect to accounting of profile information). We thus believe that the system is particularly applicable for convergent personalisation scenarios in which web-based personalisation data has to be combined with local information stored on mobile devices for nomadic use.
(More)