The 6th International Conference on Ambient Systems, Networks and Technologies (ANT 2015) Toward an Access Control Model for IOTCollab

The increase in Internet-connected physical devices offers new possibilities and opportunities. This Internet of Things (IoT) fosters the development of new platforms, services and applications that connect the physical world (represented by physical objects) to the virtual world (represented by the Internet). The work presented here proposes a study of role and attribute-based access control models that tackle the security concerns of our already developed data sharing framework. The framework introduced a formal theoretical model, the IOTCollab domain specific language, and an integrated development environment that implements this model. We have extended this framework by completing the formal theoretical model with access control capabilities. © 2015 The Authors. Published by Elsevier B.V. Peer-review under responsibility of the Conference Program Chairs.

[1]  Arkady B. Zaslavsky,et al.  Context Aware Computing for The Internet of Things: A Survey , 2013, IEEE Communications Surveys & Tutorials.

[2]  Ravi S. Sandhu,et al.  Towards a task-based paradigm for flexible and adaptable access control in distributed applications , 1993, NSPW '92-93.

[3]  D. Richard Kuhn,et al.  Role-Based Access Controls , 2009, ArXiv.

[4]  Karen A. Scarfone,et al.  Guide to Attribute Based Access Control (ABAC) Definition and Considerations [includes updates as of 02-25-2019] , 2019 .

[5]  Domenico Rotondi,et al.  A capability-based security approach to manage access control in the Internet of Things , 2013, Math. Comput. Model..

[6]  Ravi S. Sandhu,et al.  Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management , 1997, DBSec.

[7]  Jing Liu,et al.  A Model of Workflow-oriented Attributed Based Access Control , 2011 .

[8]  Jordán Pascual Espada Service Orchestration on the Internet of Things , 2012, Int. J. Interact. Multim. Artif. Intell..

[9]  Guoping Zhang,et al.  An extended role based access control model for the Internet of Things , 2010, 2010 International Conference on Information, Networking and Automation (ICINA).

[10]  Domenico Rotondi,et al.  IoT Access Control Issues: A Capability Based Approach , 2012, 2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing.

[11]  Song Junde,et al.  A Task-Attribute-Based Workflow Access Control Model , 2013, 2013 IEEE International Conference on Green Computing and Communications and IEEE Internet of Things and IEEE Cyber, Physical and Social Computing.

[12]  Erik Wilde,et al.  A resource oriented architecture for the Web of Things , 2010, 2010 Internet of Things (IOT).

[13]  Florian Kerschbaum An access control model for mobile physical objects , 2010, SACMAT '10.

[14]  Mehdi Adda,et al.  A Data Sharing Strategy and a DSL for Service Discovery, Selection and Consumption for the IoT , 2014, EUSPN/ICTH.

[15]  Ramjee Prasad,et al.  Identity Authentication and Capability Based Access Control (IACAC) for the Internet of Things , 2012, J. Cyber Secur. Mobil..

[16]  Seog Park,et al.  Task-role-based access control model , 2003, Inf. Syst..

[17]  Chao Lee,et al.  A Location Temporal based Access Control Model for IoTs , 2013 .

[18]  Roshan K. Thomas,et al.  Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments , 1997, RBAC '97.

[19]  Henry M. Levy,et al.  Capability-Based Computer Systems , 1984 .

[20]  Seng-Phil Hong,et al.  Access control in collaborative systems , 2005, CSUR.

[21]  Ravi S. Sandhu,et al.  Conceptual foundations for a model of task-based authorizations , 1994, Proceedings The Computer Security Foundations Workshop VII.