TY - GEN
T1 - Contexts-States-Aware Access Control for Internet of Things
AU - Dong, Yuji
AU - Wan, Kaiyu
AU - Huang, Xin
AU - Yue, Yong
N1 - Publisher Copyright:
© 2018 IEEE.
PY - 2018/9/13
Y1 - 2018/9/13
N2 - The more and more connected devices and rapidly developing Internet of Things (IoT) applications are the foundations of the future smart cities which provide ubiquitous services. The extension and proliferation of the technology brings huge security challenges, especially for the infrastructural IoT applications in the open environments. The traditional access model, such as Role-Based Access Control (RBAC) cannot provide the flexible fine-grained access control which is required due to dynamic changing users and environments. On the other hand, some other features of the IoT applications like constrained-resources devices and large-scale deployments make it very difficult to apply Attribute-Based Access Control (ABAC). Furthermore, the ABAC mechanism cannot control the way that the requester uses the services once the requester obtains the access permission. To address these issues, in this paper, we propose an access control model based on ABAC with Contexts-States-Awareness. The proposed model is implemented by using Semantic Web technologies with a sample ontology for the model and some access control policies in SWRL (Semantic Web Rule Language). We also give a logical architecture which is the extension from the reference architecture of XACML eXtensible Access Control Markup Language specification.
AB - The more and more connected devices and rapidly developing Internet of Things (IoT) applications are the foundations of the future smart cities which provide ubiquitous services. The extension and proliferation of the technology brings huge security challenges, especially for the infrastructural IoT applications in the open environments. The traditional access model, such as Role-Based Access Control (RBAC) cannot provide the flexible fine-grained access control which is required due to dynamic changing users and environments. On the other hand, some other features of the IoT applications like constrained-resources devices and large-scale deployments make it very difficult to apply Attribute-Based Access Control (ABAC). Furthermore, the ABAC mechanism cannot control the way that the requester uses the services once the requester obtains the access permission. To address these issues, in this paper, we propose an access control model based on ABAC with Contexts-States-Awareness. The proposed model is implemented by using Semantic Web technologies with a sample ontology for the model and some access control policies in SWRL (Semantic Web Rule Language). We also give a logical architecture which is the extension from the reference architecture of XACML eXtensible Access Control Markup Language specification.
UR - http://www.scopus.com/inward/record.url?scp=85054391452&partnerID=8YFLogxK
U2 - 10.1109/CSCWD.2018.8465364
DO - 10.1109/CSCWD.2018.8465364
M3 - Conference Proceeding
AN - SCOPUS:85054391452
SN - 9781538614822
T3 - Proceedings of the 2018 IEEE 22nd International Conference on Computer Supported Cooperative Work in Design, CSCWD 2018
SP - 271
EP - 276
BT - Proceedings of the 2018 IEEE 22nd International Conference on Computer Supported Cooperative Work in Design, CSCWD 2018
A2 - Barthes, Jean-Paul
A2 - Zhu, Haibin
A2 - Luo, Junzhou
A2 - Shen, Weiming
A2 - Zhang, Jinghui
A2 - Dong, Fang
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 22nd IEEE International Conference on Computer Supported Cooperative Work in Design, CSCWD 2018
Y2 - 9 May 2018 through 11 May 2018
ER -
