Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Assigning and Enforcing Security Policies on Handheld Devices

Published

Author(s)

Wayne Jansen, Athanasios T. Karygiannis, Serban I. Gavrila, Vlad Korolev

Abstract

The proliferation of mobile handheld devices, such as Personal Digital Assistants (PDAs) and tablet computers, within the workplace is expanding rapidly. While providing productivity benefits, the ability of these devices to store and transmit corporate information through both wired and wireless networks poses potential risks to an organization's security. This paper describes an approach to assigning and enforcing an organization's security policy on handheld devices. The approach relies on the device holding a valid policy certificate, obtained through synchronization with a user's desktop computer, organizational server, or other means, before conducting any security-sensitive operations. The paper describes a proof-of-concept implementation of the policy certificate issuing tool, policy specification language, certificate representation, and enforcement mechanisms that were used to demonstrate this approach, and discusses the associated benefits and drawbacks.
Conference Dates
May 13-17, 2002
Conference Location
Ottawa, CA
Conference Title
Canadian Information Technology Security Symposium

Keywords

digital certificate, handheld devices, security policy, trust management

Citation

Jansen, W. , Karygiannis, A. , Gavrila, S. and Korolev, V. (2002), Assigning and Enforcing Security Policies on Handheld Devices, Canadian Information Technology Security Symposium, Ottawa, CA, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=151259 (Accessed December 14, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created May 1, 2002, Updated February 17, 2017