Access control in the Internet of Things: a survey of existing approaches and open research questions

Bertin, Emmanuel; Hussein, Dina; Sengul, Cigdem; Frey, Vincent

doi:10.1007/s12243-019-00709-7

Cited by 56 publications

(45 citation statements)

References 52 publications

(59 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Existing home security systems that are based on audio and video surveillance set up a possible risk of privacy for residents [ 34 ]. Most indicated authorization mechanisms for a smart home are based on attributes (e.g., actuator request timestamp in an Attribute Based Access Control—ABAC mechanism) [ 52 ]. A contextual-based framework for continuous authentication in smart homes is proposed in the literature as a way to enhance existing static user authentication mechanisms.…”

Section: Related Workmentioning

confidence: 99%

“…Existing authentication mechanisms, such as passwords, tokens, or two-stage PINs used in bank authentication are invasive and not appropriate to the usability of voice-based interactions. The use of usable security paradigm could help to design an authentication mechanism that is secure and usable in the user’s perspective [ 52 , 78 , 79 ]. Specifically, existing invasive authentication methods hinder the usability by requiring additional user interactions, as described in Definition 1.…”

Section: Autonomous Device Challenge Response Authenticationmentioning

confidence: 99%

See 1 more Smart Citation

Non-Invasive Challenge Response Authentication for Voice Transactions with Smart Home Behavior

Hayashi

Ruggiero

2020

Sensors

View full text Add to dashboard Cite

Smart speakers, such as Alexa and Google Home, support daily activities in smart home environments. Even though voice commands enable friction-less interactions, existing financial transaction authorization mechanisms hinder usability. A non-invasive authorization by leveraging presence and light sensors’ data is proposed in order to replace invasive procedure through smartphone notification. The Coloured Petri Net model was created for synthetic data generation, and one month data were collected in test bed with real users. Random Forest machine learning models were used for smart home behavior information retrieval. The LSTM prediction model was evaluated while using test bed data, and an open dataset from CASAS. The proposed authorization mechanism is based on Physical Unclonable Function usage as a random number generator seed in a Challenge Response protocol. The simulations indicate that the proposed scheme with specialized autonomous device could halve the total response time for low value financial transactions triggered by voice, from 7.3 to 3.5 s in a non-invasive manner, maintaining authorization security.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Autonomous Device Challenge Response Authenticationmentioning

confidence: 99%

Non-Invasive Challenge Response Authentication for Voice Transactions with Smart Home Behavior

Hayashi

Ruggiero

2020

Sensors

View full text Add to dashboard Cite

show abstract

“…These smart contracts also provide much improved authorization access rules for cloud users while accessing cloud services and data using Access Control Lists (ACLs) compared to traditional authorization protocols like Role Based Access Management (RBAC), OAuth 2.0, OpenID, OMA DM and LWM2M. A smart contract's business logic has many programming functions, predefined rules, conditions (contractual terms) defined by mutual agreement between the participating peers to read, execute and update the ledger's current state and are initiated through a transaction proposal [84].…”

Section: Blockchain Enabled Authentication and Authorizationmentioning

confidence: 99%

Next-generation Blockchain-Enabled Virtualized Cloud Security Solutions: Review and Open Challenges

Uddin¹,

Khalique²,

Jumani³

2020

Preprint

View full text Add to dashboard Cite

This paper reviews, discusses, and highlights some of the standard cloud computing vulnerabilities primarily related to virtualization platforms and their implementations while outsourcing services and resources to different end-users and business enterprises. Furthermore, we provide Blockchain-enabled solutions for virtualized cloud computing platform involving both the end-users as well as cloud service providers (CSP) to address and solve different security and privacy-related vulnerabilities using blockchain-enabled solutions to improve their cloud services and resource provisioning facilities.

show abstract

“…Even in this case, it is a verification of the identity of the user of the system and access means the physical entry of a person into a secure area. European technical standards define an access control system as a system that allows or rejects a user's request to enter or exit a secure area in a building [3].…”

Section: Introductionmentioning

confidence: 99%

The impact of foreign markets globalization on the price and functionality of electronic access control systems

Lenko

Boroš

2021

SHS Web of Conf.

View full text Add to dashboard Cite

Research background: The research, which is the subject of the paper, is based on the global expansion of the use of electronic access control systems using biometric data for user verification. Due to the globalization of products from foreign markets to Slovakia, there is a competition between suppliers. The disadvantage is that organizations that are considering procuring an electronic access control system focus their attention only on its price. Globalization and global use have neglected the skills gap between European, American, and Asian markets. Purpose of the article: The paper will aim to point out, through a case study, the financial and functional differences of electronic access control systems. In the case study, a comparison of three different systems with the possibility of procurement on the European, American, and Asian markets will be performed on the building - administrative building. Methods: The article will mainly use methods such as the global method and the optimization model of the financial plan. As well as a case study, the cooperation of achieved results and analysis of possibilities of foreign markets. Findings & Value added: The results achieved by the paper will be globally usable in the conditions of European countries. These will be the conclusions of a case study that will point to the appropriateness of choosing an electronic access control system using biometric features in a standard office building. We can also consider the creation of a project budget usable for organizations as one of the added values.

show abstract

Access control in the Internet of Things: a survey of existing approaches and open research questions

Cited by 56 publications

References 52 publications

Non-Invasive Challenge Response Authentication for Voice Transactions with Smart Home Behavior

Non-Invasive Challenge Response Authentication for Voice Transactions with Smart Home Behavior

Next-generation Blockchain-Enabled Virtualized Cloud Security Solutions: Review and Open Challenges

The impact of foreign markets globalization on the price and functionality of electronic access control systems

Contact Info

Product

Resources

About