Trust Aware Continuous Authorization for Zero Trust in Consumer Internet of Things

Dimitrakos, Theo; Dilshener, Tezcan; Кравцов, А.В.; Marra, Antonio; Martinelli, Fabio; Rizos, Athanasios; Rosetti, Alessandro; Saracino, Andrea

doi:10.1109/trustcom50675.2020.00247

Cited by 42 publications

(15 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Sateesh et al [23] proposed an SDP architecture for vehicular selforganizing networks to enable the spontaneous creation of networks between vehicles. Several researchers implemented proofs of concept to demonstrate the applicability of zero trust to the IoT [24][25][26][27]. Chen et al [28] proposed a zero trust security protection scheme for the power IoT based on blockchain, which realized strict management of control information, more standardized management of access rights to data, and much higher trustworthiness and interaction rates of business data.…”

Section: Zero Trust Securitymentioning

confidence: 99%

Key Management Protocol for Heterogeneous Sensor Networks Based on Zero Trust Security and Chaotic Neural Networks

Xie

Zhang

2023

Preprint

View full text Add to dashboard Cite

In view of the node security risks and key management vulnerabilities in heterogeneous sensor networks, a key management protocol for heterogeneous sensor networks based on zero trust security and chaotic neural networks (KMPHSN-ZTSCNN) was proposed. Taking advantages of the decomposition difficulty of singular matrix and chaotic classification characteristics of Hopfield overload chaotic neural network, the node registration and authentication of sensor network were achieved by blockchain and zero-knowledge proof. The channel state information (CSI) and the adjustable mathematical function were relied on to generate a dynamically changing key to complete continuous verification and achieve zero trust security authentications, thus ensuring data security. The protocol can dynamically allocate different keyspace sizes according to the security level of the group, the storage capacity if the nodeand computing capacity and can adapt to the asymmetric structure of heterogeneous sensor networks. Theoretical proof and experimental performance analysis results show that the protocol is feasible and can meet the security requirements of heterogeneous sensor networks.

show abstract

Section: Zero Trust Securitymentioning

confidence: 99%

Key Management Protocol for Heterogeneous Sensor Networks Based on Zero Trust Security and Chaotic Neural Networks

Xie

Zhang

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Risk scoring refers to assigning scores regarding whether the user's device has an adequate level of security. Each time a user requests access to a resource, the user is subjected to risk scoring [5,11,12]. In a company that implements zero trust, the scoring criteria for risk scoring are established by the trust algorithm's policies, and access is only allowed if the user device's risk score meets a certain standard.…”

Section: Trust Algorithm In Zero Trustmentioning

confidence: 99%

Endpoint Device Risk-Scoring Algorithm Proposal for Zero Trust

et al. 2023

View full text Add to dashboard Cite

The rapid expansion of remote work following the COVID-19 pandemic has necessitated the development of more robust and secure endpoint device security solutions. Companies have begun to adopt the zero trust security concept as an alternative to traditional network boundary security measures, which requires that every device and user be considered untrustworthy until proven otherwise. Despite the potential benefits of implementing zero trust, the stringent security measures can inadvertently lead to low availability by denying access to legitimate users or limiting their ability to access necessary resources. To address this challenge, we propose a risk-scoring algorithm that balances confidentiality and availability by evaluating the user’s impact on resources. Our contributions include (1) summarizing the limitations of existing risk scoring systems in companies that implement zero trust, (2) proposing a dynamic importance metric that measures the importance of resources accessible to users within zero trust systems, and (3) introducing a risk-scoring algorithm that employs the dynamic importance metric to enhance both security and availability in zero trust environments. By incorporating the dynamic importance metric, our proposed algorithm provides a more accurate representation of risk, leading to better security decisions and improved resource availability for legitimate users. This proposal aims to help organizations achieve a more balanced approach to endpoint device security, addressing the unique challenges posed by the increasing prevalence of remote work.

show abstract

“…We see further ZT processes such as determining the trustworthiness of each partner as out of scope of this paper as it focuses on an SFC network architecture. This extra functionality must be provided by the ZT components in the network and is discussed in related work [6], [31], [35]. We also consider the management of SFs to be out of scope.…”

Section: A Assumptionsmentioning

confidence: 99%

Secure Service Function Chaining in the Context of Zero Trust Security

Bradatsch

Haeberle

Steinert

et al. 2022

2022 IEEE 47th Conference on Local Computer Networks (LCN)

View full text Add to dashboard Cite

Service Function Chaining (SFC) enables dynamic steering of traffic through a set of service functions based on classification of packets, allowing network operators finegrained and flexible control of packet flows. New paradigms like Zero Trust (ZT) pose additional requirements to the security of network architectures. This includes client authentication, confidentiality, and integrity throughout the whole network, while also being able to perform operations on the unencrypted payload of packets. However, these requirements are only partially addressed in existing SFC literature. Therefore, we first present a comprehensive analysis of the security requirements for SFC architectures. Based on this analysis, we propose a concept towards the fulfillment of the requirements while maintaining the flexibility of SFC. In addition, we provide and evaluate a proof of concept implementation, and discuss the implications of the design choices.

show abstract

Trust Aware Continuous Authorization for Zero Trust in Consumer Internet of Things

Cited by 42 publications

References 20 publications

Key Management Protocol for Heterogeneous Sensor Networks Based on Zero Trust Security and Chaotic Neural Networks

Key Management Protocol for Heterogeneous Sensor Networks Based on Zero Trust Security and Chaotic Neural Networks

Endpoint Device Risk-Scoring Algorithm Proposal for Zero Trust

Secure Service Function Chaining in the Context of Zero Trust Security

Contact Info

Product

Resources

About