Context‐aware usage control for web of things

Bai, Guangdong; Yang, Lin; Gu, Liang; Guo, Yao; Chen, Xiangqun

doi:10.1002/sec.424

Cited by 19 publications

(14 citation statements)

References 55 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…A secure IoT-suitable access control system for IoT must be capable of (1) precisely identify the entities with robust anti-fraud mechanisms in order to prevent non-authorized malicious devices or users of accessing resources, (2) enforce the access policies defined by resource owners and would be (3) gainful if it attends all the following characteristics [39,5,18,14,13]: scalability, lightweight, transparency, user-friendly, fault-tolerance, privacy-friendly, delegation-capability, context-aware, fine-grained, relationships-aware and legacy-compatibility. Therefore, developing an access control for the IoT is a challenge task mainly because it commonly has to deal with these characteristics.…”

Section: Iot Access Control Requirementsmentioning

confidence: 99%

ControlChain: Blockchain as a Central Enabler for Access Control Authorizations in the IoT

Pinno

Grégio

Bona

2017

GLOBECOM 2017 - 2017 IEEE Global Communications Conference

140

View full text Add to dashboard Cite

Section: Iot Access Control Requirementsmentioning

confidence: 99%

ControlChain: Blockchain as a Central Enabler for Access Control Authorizations in the IoT

Pinno

Grégio

Bona

2017

GLOBECOM 2017 - 2017 IEEE Global Communications Conference

140

View full text Add to dashboard Cite

“…A secure IoT access control system must be capable of (1) precisely identifying the entities with robust anti‐fraud mechanisms to prevent non‐authorized malicious devices or users from accessing resources, (2) enforce the access policies defined by resource owners, and should (3) have the following characteristics: scalability, lightweight, transparent, user‐friendly, fault‐tolerant, privacy‐friendly, delegation‐capable, context‐aware, and fine‐grained. Furthermore, we also argue that it needs to be relationships‐aware and legacy‐compatible.…”

Section: Introductionmentioning

confidence: 99%

ControlChain: A new stage on the IoT access control authorization

Pinno

Grégio

Bona

2019

Concurrency and Computation

View full text Add to dashboard Cite

The IoT is changing the way we interact with the world. Very soon, almost all of our daily tasks will be made through self intelligent systems embedded in devices scattered all around us. Their mission is to turn our cities, transportation systems, buildings, homes, and bodies in smart environments. These environments will bring us more comfort, improve our performance, increase our profits, and take away time-consuming tasks. However, besides its great benefits, the IoT is also a big source of concerns, mainly because a good part of its devices will handle private and confidential information. Recently, cases of successful IoT invasions only worsen this scenario and show us that the today's adopted access control systems need to be replaced by more efficiently and secure ones. To overcome these access control problems, in this work, we present the ControlChain. The ControlChain is an access control authorization architecture that is heavily based on Blockchain technology. We also demonstrate the viability of the ControlChain through the E-ControlChain, a proof-of-concept developed to run over the Ethereum network.Our proposals follows the IoT tendency requirements and are user-transparent, user-friendly, fully decentralized, scalable, fault tolerant, and compatible with a wide range of today's access control models already used in the IoT. Finally, we also make a cost and a performance analysis of E-ControlChain, using a Raspberry Pi as an IoT device.

show abstract

“…To apply such a scheme to resource constrained architectures, it only uses simple hash and XOR computations, as in [33]. The authentication and access control method presented in [35] aims at establishing the session key based on Elliptic Curve Cryptography (ECC), another lightweight encryption mechanism. This scheme defines attribute-based access control policies, managed by an attribute authority, enhancing mutual authentication among the user and the sensor nodes, as well as solving the resourceconstrained issue at application level in IoT.…”

Section: Authentication and Confidentialitymentioning

confidence: 99%

“…This paradigm derives from the integration of social networking concepts into IoT, since the objects belonging to the IoT infrastructure can establish social relationships in an autonomous way with respect to their owners. The challenge addressed in [35] is to build a reputation-based trust mechanism for the SIoT which can effectively deal with certain types of malicious behaviors aimed at misleading other nodes, to drive the use of services and information delivery only towards trusted nodes.…”

Section: Trust In Iotmentioning

confidence: 99%

Open Issues and Security Challenges of Data Communication Channels in Distributed Internet of Things (IoT): A Survey

Ezema¹,

Abdullah²,

Mohd³

2018

CCS Archive

View full text Add to dashboard Cite

The concept of the Internet of Things (IoT) has evolved over time. The introduction of the Internet of Things and Services into the manufacturing environment has ushered in a fourth industrial revolution: Industry 4.0. It is no doubt that the world is undergoing constant transformations that somehow change the trajectory and history of humanity. We can illustrate this with the first and second industrial revolutions and the information revolution. IoT is a paradigm based on the internet that comprises many interconnected technologies like RFID (Radio Frequency Identification) and WSAN (Wireless Sensor and Actor Networks) to exchange information. The current needs for better control, monitoring and management in many areas, and the ongoing research in this field, have originated the appearance and creation of multiple systems like smart-home, smart-city and smart-grid. The IoT services can have centralized or distributed architecture. The centralized approach provides is where central entities acquire, process, and provide information while the distributed architectures, is where entities at the edge of the network exchange information and collaborate with each other in a dynamic way. To understand the two approaches, it is necessary to know its advantages and disadvantages especially in terms of security and privacy issues. This paper shows that the distributed approach has various challenges that need to be solved. But also, various interesting properties and strengths. In this paper we present the main research challenges and the existing solutions in the field of IoT security, identifying open issues, the industrial revolution and suggesting some hints for future research.

show abstract

Context‐aware usage control for web of things

Cited by 19 publications

References 55 publications

ControlChain: Blockchain as a Central Enabler for Access Control Authorizations in the IoT

ControlChain: Blockchain as a Central Enabler for Access Control Authorizations in the IoT

ControlChain: A new stage on the IoT access control authorization

Open Issues and Security Challenges of Data Communication Channels in Distributed Internet of Things (IoT): A Survey

Contact Info

Product

Resources

About