Skip to main content
SpringerLink
Log in
Book cover

International Conference on Information Systems Security

ICISS 2015: Information Systems Security pp 118–138Cite as

Context-Aware Access Control in Novel Automotive HMI Systems

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 9478))

Abstract

The growing relevance of vehicular applications like media player, navigation system, or speedometer using graphical presentation has lead to an increasing number of displays in modernf cars. This effectuates the desire for flexible sharing of all the available displays between several applications. However, automotive requirements include many regulations to avoid driver distraction to ensure safety. To allow for safe sharing of the available screen surface between the many safety-critical and non-safety-critical applications, adequate access control systems are required. We use the notion of contexts to dynamically determine, which application is allowed to access which display area. A context can be derived from vehicle sensors (e.g., the current speed), or be an application-specific state (e.g., which menu item is selected). We propose an access control model that is inherently aware of the context of the car and the applications. It provides delegation of access rights to display areas by applications. We implemented a proof-of-concept implementation that demonstrates the feasibility of our concept and evaluated the latency introduced by access control. Our results show that the delay reacting on dynamic context changes is small enough for automotive scenarios.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Bell, D.E., Lapadula, L.J.: Secure computer system: unified exposition and MULTICS interpretation. Technical report ESD-TR-75-306 (1976)

    Google Scholar 

  2. Bhatti, R., et al.: A trust-based context-aware access control model for web-services. In: Proceedings, International Conference on Web Services (2004)

    Google Scholar 

  3. Broy, M., Kruger, I., Pretschner, A., Salzmann, C.: Engineering automotive software. Proc. IEEE 95(2), 356–373 (2007)

    Article  Google Scholar 

  4. Corradi, A., et al.: Context-based access control for ubiquitous service provisioning. In: Proceedings of the 28th COMPSAC (2004)

    Google Scholar 

  5. Corradi, A., et al.: Context-based access control management in ubiquitous environments. In: Proceedings of the 3rd NCA (2004)

    Google Scholar 

  6. Epstein, J., et al.: A prototype B3 trusted X window system. In: Proceedings of the 7th Annual Computer Security Applications Conference (1991)

    Google Scholar 

  7. ESOP: on safe and efficient in-vehicle information and communication systems: update of the European statement of principles on human-machine interface. Commission of the European Communities (2008)

    Google Scholar 

  8. Feske, N., Helmuth, C.: Overlay window management: user interaction with multiple security domains (2004)

    Google Scholar 

  9. Feske, N., Helmuth, C.: A nitpicker’s guide to a minimal-complexity secure GUI. In: Proceedings of the 21st ACSAC, December 2005

    Google Scholar 

  10. Gansel, S., et al.: An access control concept for novel automotive HMI systems. In: Proceedings of the 19th SACMAT (2014)

    Google Scholar 

  11. Gansel, S., Schnitzer, S., Dürr, F., Rothermel, K., Maihöfer, C.: Towards virtualization concepts for novel automotive HMI systems. In: Schirner, G., Götz, M., Rettberg, A., Zanella, M.C., Rammig, F.J. (eds.) IESS 2013. IFIP AICT, vol. 403, pp. 193–204. Springer, Heidelberg (2013)

    Chapter  Google Scholar 

  12. Hansen, J.G.: Blink: advanced display multiplexing for virtualized applications. In: Proceedings of the 17th NOSSDAV (2007)

    Google Scholar 

  13. Herges, D., et al.: Ginger: an access control framework for telematics applications. In: Processing of the 11th TrustCom (2012)

    Google Scholar 

  14. Hong-Yue, L., Miao-Lei, D., Wei-Dong, Y.: A context-aware fine-grained access control model. In: Computer Science Service System (CSSS) (2012)

    Google Scholar 

  15. ISO 26262: Road vehicles - functional safety. ISO, Geneva, CH, November 2011

    Google Scholar 

  16. Janker, H.: Straßenverkehrsrecht: StVG, StVO, StVZO, Fahrzeug-ZulassungsVO, Fahrerlaubnis-VO, Verkehrszeichen. Bußgeldkatalog, Beck (2011)

    Google Scholar 

  17. Kouadri Mostéfaoui, G., Brézillon, P.: A generic framework for context-based distributed authorizations. In: Blackburn, P., Ghidini, C., Turner, R.M., Giunchiglia, F. (eds.) CONTEXT 2003. LNCS, vol. 2680, pp. 204–217. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  18. Schilit, B., Theimer, M.: Disseminating active map information to mobile hosts. IEEE Netw. 8(5), 22–32 (1994)

    Article  Google Scholar 

  19. Strembeck, M., et al.: An integrated approach to engineer and enforce context constraints in RBAC environments. ACM Trans. Inf. Syst. Secur. 7(3), 392–427 (2004)

    Article  Google Scholar 

Download references

Acknowledgement

This paper has been supported in part by the ARAMiS project of the German Federal Ministry for Education and Research with funding ID 01IS11035.

Author information

Authors and Affiliations

  1. System Architecture and Platforms, Mercedes-Benz Cars, Daimler AG, Stuttgart, Germany

    Simon Gansel, Viktor Friesen & Christian Maihöfer

  2. Institute of Parallel and Distributed Systems, University of Stuttgart, Stuttgart, Germany

    Stephan Schnitzer, Ahmad Gilbeau-Hammoud, Frank Dürr & Kurt Rothermel

  3. Telemotive AG, Munich, Germany

    Ulrich Krämer

Authors
  1. Simon Gansel
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Stephan Schnitzer
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Ahmad Gilbeau-Hammoud
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Viktor Friesen
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Frank Dürr
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Kurt Rothermel
    View author publications

    You can also search for this author in PubMed Google Scholar

  7. Christian Maihöfer
    View author publications

    You can also search for this author in PubMed Google Scholar

  8. Ulrich Krämer
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Simon Gansel .

Editor information

Editors and Affiliations

  1. Center for Secure Information Systems, Fairfax, Virginia, USA

    Sushil Jajoda

  2. Jadavpur University, Kolkata, India

    Chandan Mazumdar

Rights and permissions

Reprints and permissions

Copyright information

© 2015 Springer International Publishing Switzerland

About this paper

Cite this paper

Gansel, S. et al. (2015). Context-Aware Access Control in Novel Automotive HMI Systems. In: Jajoda, S., Mazumdar, C. (eds) Information Systems Security. ICISS 2015. Lecture Notes in Computer Science(), vol 9478. Springer, Cham. https://doi.org/10.1007/978-3-319-26961-0_8

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-26961-0_8

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-26960-3

  • Online ISBN: 978-3-319-26961-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation