Access Control Models for Virtual Object Communication in Cloud-Enabled IoT

被引:40
|
作者
Alshehri, Asma [1 ]
Sandhu, Ravi
机构
[1] Univ Texas San Antonio, Inst Cyber Secur, One UTSA Circle, San Antonio, TX 78249 USA
关键词
Security; Access Control; Internet of Things; Devices; Virtual Objects; ACL; RBAC: ABAC; INTERNET; THINGS; CHALLENGES;
D O I
10.1109/IRI.2017.60
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The Internet of Things (IoT) is the latest evolution of the Internet, encompassing an enormous number of connected physical "things." The access-control oriented (ACO) architecture was recently proposed for cloud-enabled IoT, with virtual objects (VOs) and cloud services in the middle layers. A central aspect of ACO is to control communication among VOs. This paper develops operational and administrative access control models for this purpose, assuming topic-based publish-subscribe interaction among VOs. Operational models are developed using (i) access control lists for topics and capabilities for virtual objects and (ii) attribute-based access control, and it is argued that role-based access control is not suitable for this purpose. Administrative models for these two operational models are developed using (i) access control lists, (ii) role-based access control, and (iii) attribute-based access control. A use case illustrates the details of these access control models for VO communication, and their differences. An assessment of these models with respect to security and privacy preserving objectives of IoT is also provided.
引用
收藏
页码:16 / 25
页数:10
相关论文
共 50 条
  • [1] Access Control Models for Cloud-Enabled Internet of Things: A Proposed Architecture and Research Agenda
    Alshehri, Asma
    Sandhu, Ravi
    [J]. 2016 IEEE 2ND INTERNATIONAL CONFERENCE ON COLLABORATION AND INTERNET COMPUTING (IEEE CIC), 2016, : 530 - 538
  • [2] An Access Control Framework for Cloud-Enabled Wearable Internet of Things
    Bhatt, Smriti
    Patwa, Farhan
    Sandhu, Ravi
    [J]. 2017 IEEE 3RD INTERNATIONAL CONFERENCE ON COLLABORATION AND INTERNET COMPUTING (CIC), 2017, : 328 - 338
  • [3] Privacy-Preserving Bilateral Fine-Grained Access Control for Cloud-Enabled Industrial IoT Healthcare
    Sun, Jianfei
    Yuan, Yu
    Tang, MingJian
    Cheng, Xiaochun
    Nie, Xuyun
    Aftab, Muhammad Umar
    [J]. IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2022, 18 (09) : 6483 - 6493
  • [4] Real-Virtual World Device Synchronization in a Cloud-Enabled Social Virtual Reality IoT Network
    Simiscuka, Anderson Augusto
    Markande, Tejas Moreshwar
    Muntean, Gabriel-Miro
    [J]. IEEE ACCESS, 2019, 7 : 106588 - 106599
  • [5] Five Challenges in Cloud-enabled Intelligence and Control
    Abdelzaher, Tarek
    Hao, Yifan
    Jayarajah, Kasthuri
    Misra, Archan
    Skarin, Per
    Yao, Shuochao
    Weerakoon, Dulanga
    Arzen, Karl-Erik
    [J]. ACM TRANSACTIONS ON INTERNET TECHNOLOGY, 2020, 20 (01)
  • [6] IoT and Biosensors: A Smart Portable Potentiostat With Advanced Cloud-Enabled Features
    Bianchi, Valentina
    Boni, Andrea
    Bassoli, Marco
    Giannetto, Marco
    Fortunati, Simone
    Careri, Maria
    de Munari, Ilaria
    [J]. IEEE ACCESS, 2021, 9 : 141544 - 141554
  • [7] Blockchain and Reinforcement Neural Network for Trusted Cloud-Enabled IoT Network
    Samriya, Jitendra Kumar
    Kumar, Surendra
    Kumar, Mohit
    Xu, Minxian
    Wu, Huaming
    Gill, Sukhpal Singh
    [J]. IEEE TRANSACTIONS ON CONSUMER ELECTRONICS, 2024, 70 (01) : 2311 - 2322
  • [8] CENSOR: Cloud-enabled secure IoT architecture over SDN paradigm
    Conti, Mauro
    Kaliyar, Pallavi
    Lal, Chhagan
    [J]. CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE, 2019, 31 (08):
  • [9] Cloud-aware power control for cloud-enabled small cells
    Mach, Pavel
    Becvar, Zdenek
    [J]. 2014 GLOBECOM WORKSHOPS (GC WKSHPS), 2014, : 1038 - 1043
  • [10] Improving the Expected Quality of Experience in Cloud-Enabled Wireless Access Networks
    Liu, Hang
    Smith, Kristofer
    [J]. 2015 IEEE 12TH INTERNATIONAL CONFERENCE ON MOBILE AD HOC AND SENSOR SYSTEMS (MASS), 2015, : 519 - 524