Authentication and Access Control for Open Messaging Interface Standard

Yousefnezhad, Narges; Filippov, Roman; Javed, Asad; Buda, Andrea; Madhikermi, Manik; Främling, Kary

doi:10.1145/3144457.3144461

Cited by 6 publications

(6 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• Authorization: accountable for providing O-MI node owners with fine-grained control over the data/service items they would like to share/sell. This module further consists of two components: (i) access control to process O-MI requests to verify whether the requester is (or not) allowed to access the requested data/service items; (ii) administrator console to provide O-MI node owners with the possibility to manage access policies [118].…”

Section: Security and Privacymentioning

confidence: 99%

bIoTope: Building an IoT Open Innovation Ecosystem for Smart Cities

et al. 2020

Self Cite

View full text Add to dashboard Cite

The Internet of Things (IoT) has led towards a digital world in which everything becomes connected. Unfortunately, most of the currently marketed connected devices feed vertically-oriented closed systems (commonly referred to as vertical silos) which prevent the development of a unified global IoT. This issue is all the more valid in complex environments, such as smart cities, in which exceedingly large amounts of heterogeneous sensor data are collected, and in which platforms and stakeholders should also be able to interact and cooperate. Therefore, it is of utmost importance to move towards the creation of open IoT ecosystems to support efficient smart city service integration, discovery and composition. This paper contributes to the specifications of such an ecosystem, which has been developed as part of the EU's H2020 bIoTope project. The novelty of this ecosystem compared with the current literature is threefold: (i) it is based on the extensive use of open communication and data standards, notably O-MI and O-DF standards, that foster technical, syntactic and semantic interoperability over domains; (ii) it proposes an innovative service marketplace for data/service publication, discovery and incentivization; (iii) it integrates security functionalities at the IoT gateway level. The practicability of our ecosystem has been validated through several smart city proofs-of-concept set up in three distinct cities: Helsinki, Lyon and Brussels. Given the five major themes defined in the CITYKeys (a smart city performance indicator framework), namely People, Planet, Prosperity, Governance and Propagation, bIoTope mainly contributes to Prosperity-related metrics, as discussed in this paper.

show abstract

Section: Security and Privacymentioning

confidence: 99%

bIoTope: Building an IoT Open Innovation Ecosystem for Smart Cities

et al. 2020

Self Cite

View full text Add to dashboard Cite

show abstract

“…This article is an extension of the work done in (Yousefnezhad et al, 2017) to provide suitable access control and authentication mechanisms that could regulate the rights of different principles and operations defined in O-MI/O-DF standards. This paper discusses a major step taken to enhance the security modules and added functionalities in the security module of the O-MI/O-DF standards.…”

Section: Related Workmentioning

confidence: 99%

“…Recently, many IoT frameworks such as IBM BlueMix, AWS IoT, and Azure IoT have been launched, and most of the industry-driven domain specific standards hinder the development of a single IoT ecosystem. As discussed in (Yousefnezhad et al, 2017), requiring a new web browser for each website would be complicated. In the similar context, it would be hard to imagine the current approach of IoT connectivity.…”

Section: Introductionmentioning

confidence: 99%

An OAuth-based Authentication Mechanism for Open Messaging Interface Standard

Monga

Kinnunen

Malhi

et al. 2020

Proceedings of the 12th International Conference on Agents and Artificial Intelligence

Self Cite

View full text Add to dashboard Cite

The Internet of Things (IoT) security and privacy remain a major challenge, especially due to the highly scalable and distributed nature of IoT networks. IoT security has an exceptionally wide scope which also leads to the most demanding requirements needed for the widespread realization of many IoT visions. It includes the tasks such as trusted sensing, computation, communication, privacy in terms of security scope. A large number of industry-driven domain specific standards has been developed which hinder the development of a single IoT ecosystem. O-MI and O-DF standards were previously proposed to address the challenge of interoperability in IoT devices. This paper highlights and discusses the measures taken to enhance the security of these standards by integration of OAuth 2.0 service provider functionality with the O-MI authentication module along with the existing security module. The security architecture has been proposed which enhances the security features by providing authorization without use of certificates. The implementation details of the plug-in module for envisioned security model developed for the O-MI and O-DF standards have been discussed.

show abstract

“…The security problems on the client-side are mostly related to managing client user authentication (or registration), and then controlling their level of access to different information. In Otaniemi3D, this problem was resolved by means of a security module [6] using Facebook authentication with OAuth2 and an Access Control List (ACL) approach, where access rules are specified using an O-DF tree as the information structure. Fig.…”

Section: Security Management In Otaniemi3dmentioning

confidence: 99%

MeDI: Measurement-based Device Identification Framework for Internet of Things

Yousefnezhad

Madhikermi

Främling

2018

2018 IEEE 16th International Conference on Industrial Informatics (INDIN)

Self Cite

View full text Add to dashboard Cite

IoT systems may provide information from different sensors that may reveal potentially confidential data, such as a person's presence or not. The primary question to address is how we can identify the sensors and other devices in a reliable way before receiving data from them and using or sharing it. In other words, we need to verify the identity of sensors and devices. A malicious device could claim that it is the legitimate sensor and trigger security problems. For instance, it might send false data about the environment, harmfully affecting the outputs and behavior of the system. For this purpose, using only primary identity values such as IP address, MAC address, and even the public-key cryptography key pair is not enough since IPs can be dynamic, MACs can be spoofed, and cryptography key pairs can be stolen. Therefore, the server requires supplementary security considerations such as contextual features to verify the device identity. This paper presents a measurement-based method to detect and alert false data reports during the reception process by means of sensor behavior. As a proof of concept, we develop a classification-based methodology for device identification, which can be implemented in a real IoT scenario.

show abstract

Authentication and Access Control for Open Messaging Interface Standard

Cited by 6 publications

References 15 publications

bIoTope: Building an IoT Open Innovation Ecosystem for Smart Cities

bIoTope: Building an IoT Open Innovation Ecosystem for Smart Cities

An OAuth-based Authentication Mechanism for Open Messaging Interface Standard

MeDI: Measurement-based Device Identification Framework for Internet of Things

Contact Info

Product

Resources

About