Text size
  • Small
  • Medium
  • Large
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige

    Authorisation in Context: Incorporating Context-Sensitivity into an Access Control Framework

    HCI 2014 - Sand, Sea & Sky - Holiday HCI

    Proceedings of the 28th International BCS Human Computer Interaction Conference (HCI 2014)

    Southport, UK, 9 - 12 September 2014


    Shamal Faily, John Lyle, Ivan Fléchais, Andrea Atzeni, Cesare Cameroni, Hans Myrhaug, Ayse Göker & Robert Kleinfeld



    With sensitive information about ourselves now distributed across personal devices, people need to make access control decisions for different contexts of use. However, despite advances in improving the usability of access control for both developers and users, we still lack insights about how the intentions behind policy decisions in different contexts of use are shaped. In this paper, we describe how context was incorporated into an access control framework using a study of how context influences access control decision making. We describe how the main recommendations arising from this study were used to build context into a policy editor for this access control framework.


    PDF filePDF Version of this Paper (1,731kb)