TY - GEN
T1 - Distributed access control solution for the IoT based on multi-endorsed attributes and smart contracts
AU - Drame-Maigne, Sophie
AU - Laurent, Maryline
AU - Castillo, Laurent
N1 - Publisher Copyright:
© 2019 IEEE.
PY - 2019/6/1
Y1 - 2019/6/1
N2 - The ever-growing world of the Internet of Things (IoT) is yet to agree on an effective and practical access control solution. To overcome challenges such as limited resources, or unreliable connectivity, a number of schemes offload heavy computations onto a central entity, thus creating a single point of failure. Our contribution consists in the construction of a distributed attribute-based access control mechanism, relying on the blockchain technology to dynamically manage multi-endorsed attributes and trust anchors. The originality of our proposal is multifold. First, it enables the integration of multiple security domains into a single resilient access control system. Second, its focus on attributes offers flexibility, expressiveness, and user-centricity, accommodating the dynamic addition of subjects. Third, our attribute endorsement is open, scalable, and flexible, enabling multiple administrators without sacrificing ease of management. Finally, the final access control decision is taken by the device and only requires local connection to its gateway.
AB - The ever-growing world of the Internet of Things (IoT) is yet to agree on an effective and practical access control solution. To overcome challenges such as limited resources, or unreliable connectivity, a number of schemes offload heavy computations onto a central entity, thus creating a single point of failure. Our contribution consists in the construction of a distributed attribute-based access control mechanism, relying on the blockchain technology to dynamically manage multi-endorsed attributes and trust anchors. The originality of our proposal is multifold. First, it enables the integration of multiple security domains into a single resilient access control system. Second, its focus on attributes offers flexibility, expressiveness, and user-centricity, accommodating the dynamic addition of subjects. Third, our attribute endorsement is open, scalable, and flexible, enabling multiple administrators without sacrificing ease of management. Finally, the final access control decision is taken by the device and only requires local connection to its gateway.
KW - Abac
KW - Access control
KW - Attribute-based access control
KW - Attributes
KW - Blockchain
KW - Internet of Things
KW - IoT
KW - Smart contract
KW - User-centric access control
UR - https://www.scopus.com/pages/publications/85073889975
U2 - 10.1109/IWCMC.2019.8766478
DO - 10.1109/IWCMC.2019.8766478
M3 - Conference contribution
AN - SCOPUS:85073889975
T3 - 2019 15th International Wireless Communications and Mobile Computing Conference, IWCMC 2019
SP - 1582
EP - 1587
BT - 2019 15th International Wireless Communications and Mobile Computing Conference, IWCMC 2019
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 15th IEEE International Wireless Communications and Mobile Computing Conference, IWCMC 2019
Y2 - 24 June 2019 through 28 June 2019
ER -