Access Control functions

From RFID Guardian

[edit] Access Control

The RFID Guardian maintains a centralized security policy that dictates which RFID readers have access to which RFID tags in which situations. This security policy is implemented as an Access Control List (ACL) and allows or denies RFID traffic based upon the querying reader, the targeted tag(s), the attempted command and the context, if any. The user can configure the ACL and construct groups of tags, readers, commands.

ACL related operations can be found under the Access Control item in the Main Menu. As we show below, we have grouped together some general operations related to the ACL. More specific operations that have to do with editing the sets of tags or readers, can be found under the Tags and Readers items.

An ACL consists of several files:
- a .tags file that contains tags and sets of tags
- a .reader file containing readers and theis roles
- and a .acl file containing the rules and contexts.

In order to load an ACL we have to go to the Select ACL directory option. That would list the files and directories of the RFID Guardian, and from that list we can navigate and select the appropriate directory that contains the desired files. The status of the ACL, meaning which files are currently loaded can be checked under the Check ACL status. Finally, the ACL can be cleared in order to load a new ACL, by clicking on the Clear ACL item.

More information over the Access Control List, plus a description of the RFID Guardian browser we have implemented to access and display the files of the Guardian on the screen of the phone, can be found in chapter 9 [here].