A context-aware access control framework for software services

Context-awareness is an important aspect of the dynamic environments and the different types of contextual information bring new benefits to the access control systems. By leveraging this dynamically changing information, we can achieve context-specific control over access to resources or software services. This thesis introduces a context-aware access control framework that adopts and extends the traditional role-based access control. It allows software engineers to specify the context-aware access control policies using the relevant contextual information and thus provides effective support in building access control applications. Overall, this research can contribute towards satisfying the security and privacy requirements of the stakeholders.