An Axiomatic Category-Based Access Control Model for Smart Homes

被引:0
|
作者
Bertolissi, Clara [1 ]
Fernandez, Maribel [2 ]
Thuraisingham, Bhavani [3 ]
机构
[1] Aix Marseille Univ, CNRS LIS UMR, F-7020 Marseille, France
[2] Kings Coll London, London, England
[3] Univ Texas Dallas, Richardson, TX 75083 USA
来源
LOGIC-BASED PROGRAM SYNTHESIS AND TRANSFORMATION, LOPSTR 2024 | 2024年 / 14919卷
关键词
Access Control; Internet of Things; Smart Home; Category-Based Access Control;
D O I
10.1007/978-3-031-71294-4_8
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Internet of Things (IoT) refers to a system of devices that send and receive data via the internet. In the Smart Home IoT, appropriate access controls are key for the security of the household. Popular access control models, such as RBAC and ABAC, have been adapted to this context, but user studies show that new hybrid models are required. We propose a logic-based access control model that is highly expressive: it subsumes the RBAC and ABAC models as well as a whole spectrum of hybrid models. Policies are specified via categorisation of users and devices (a natural mechanism for smart home owners) and have a logic semantics that facilitates policy verification. We have identified a simple yet expressive submodel that satisfies the criteria highlighted in user studies for smart home access control.
引用
收藏
页码:129 / 146
页数:18
相关论文
共 50 条
  • [1] Hybrid Enforcement of Category-Based Access Control
    Ali, Asad
    Fernandez, Maribel
    SECURITY AND TRUST MANAGEMENT (STM 2014), 2014, 8743 : 178 - 182
  • [2] Category-Based Administrative Access Control Policies
    Bertolissi, Clara
    Fernandez, Maribel
    Thuraisingham, Bhavani
    ACM TRANSACTIONS ON PRIVACY AND SECURITY, 2025, 28 (01)
  • [3] Hybrid enforcement of category-based access control
    Ali, Asad
    Fernández, Maribel
    Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2014, 8743 : 178 - 182
  • [4] Admin-CBAC: An Administration Model for Category-Based Access Control
    Bertolissi, Clara
    Fernandez, Maribel
    Thuraisingham, Bhavani
    PROCEEDINGS OF THE TENTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY, CODASPY 2020, 2020, : 73 - 84
  • [5] The Category-Based Approach to Access Control, Obligations and Privacy
    Fernandez, Maribel
    PROCEEDINGS OF THE 28TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, SACMAT 2023, 2023, : 1 - 2
  • [6] Access Control and Obligations in the Category-Based Metamodel: A Rewrite-Based Semantics
    Alves, Sandra
    Degtyarev, Anatoli
    Fernandez, Maribel
    LOGIC-BASED PROGRAM SYNTHESIS AND TRANSFORMATION (LOPSTR 2014), 2015, 8981 : 148 - 163
  • [7] A Category-Based Framework for Privacy-Aware Collaborative Access Control
    Obrezkov, Denis
    Sohr, Karsten
    Malaka, Rainer
    TRUST, PRIVACY AND SECURITY IN DIGITAL BUSINESS (TRUSTBUS 2021), 2021, 12927 : 126 - 139
  • [8] A Category-Based Model for ABAC
    Fernandez, Maribel
    Thuraisingham, Bhavani
    PROCEEDINGS OF THE THIRD ACM WORKSHOP ON ATTRIBUTE-BASED ACCESS CONTROL (ABAC'18), 2018, : 32 - 34
  • [9] Cognition Behind Access Control: A Usability Comparison of Rule- and Category-Based Mechanisms
    Obrezkov, Denis
    ICT SYSTEMS SECURITY AND PRIVACY PROTECTION, SEC 2024, 2024, 710 : 367 - 380
  • [10] Design of a Decentralized Identifier-Based Authentication and Access Control Model for Smart Homes
    Zhao, Xinyang
    Zhong, Bocheng
    Cui, Zicai
    ELECTRONICS, 2023, 12 (15)
12345