Abstract
Access control is a critical functionality in Internet of Things (IoT), and it is particularly promising to make access control secure, efficient and generic in a distributed environment. Another an important property of access control system in the IoT is flexibility which can be achieved by access or authority delegation. Delegation mechanisms in access control that have been studied until now have been intended mainly for a system that has no resource constraint, such as a web-based system, which is not very suitable for a highly pervasive system such as IoT. This chapter presents the Capability-based Context Aware Access Control (CCAAC) model including the authority delegation method, along with specification and protocol evaluation intended for federated Machine-to-Machine (M2M)/IoT. By using the identity and capability-based access control approach together with the contextual information and secure federated IoT, this proposed model provides scalability, flexibility, and secure authority delegation for highly distributed system. The
protocol evaluation results show that the capability creation and access mechanism of CCAAC is secure against a rigorous man-in-the-middle attack, e.g. eavesdropping and replay attacks, and is able to provide authentication as
well.
protocol evaluation results show that the capability creation and access mechanism of CCAAC is secure against a rigorous man-in-the-middle attack, e.g. eavesdropping and replay attacks, and is able to provide authentication as
well.
| Originalsprog | Engelsk |
|---|---|
| Titel | Internet of Things and M2M Communications |
| Redaktører | Fabrice Theoleyre, Ai-Chun Pang |
| Antal sider | 26 |
| Udgivelsessted | Denmark |
| Forlag | River Publishers |
| Publikationsdato | maj 2013 |
| Sider | 135-160 |
| Kapitel | 7 |
| ISBN (Trykt) | 9788792982483 |
| Status | Udgivet - maj 2013 |
| Navn | The River Publishers Series in Information Science and Technology |
|---|