论文信息 - Efficient Fine Grained Access Control for RFID Inter-Enterprise System

Efficient Fine Grained Access Control for RFID Inter-Enterprise System

Access control management is a very challenging task in an inter-enterprise RFID system due to huge amounts of information about things or objects that can be collected and accessed to and from the system. Furthermore, the information stored in the inter-enterprise RFID system contains sensitive and confidential data related to the activities of the organization involved around the RFID system. Hence, the efficiency and high-granularity are critical in the design of access control for such system. This paper presents a novel access control model which is efficient and fine grained for such a system. A detail definition and mechanism of the access control model are described in the paper. A system implementation is developed for the evaluation purpose. An important performance measure in big data processing is delay in processing time, thus the evaluation aims at measuring the access control processing time. The evaluation results show that the model is consistent, and is able to achieve less delay than the inter-enterprise RFID system without access control at a certain point.

[1] Elisa Bertino,et al. A generalized temporal role-based access control model , 2005, IEEE Transactions on Knowledge and Data Engineering.

[2] Markus Müller,et al. Fine-Grained Access Control for EPC Information Services , 2008, IOT.

[3] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[4] Athanasios T. Karygiannis,et al. SP 800-98. Guidelines for Securing Radio Frequency Identification (RFID) Systems , 2007 .

[5] Ramjee Prasad,et al. Secure Access Control and Authority Delegation Based on Capability and Context Awareness for Federated IoT , 2013 .

[6] Elisa Bertino,et al. A Trust-Based Context-Aware Access Control Model for Web-Services , 2004, Proceedings. IEEE International Conference on Web Services, 2004..

[7] Elisa Bertino,et al. TRBAC: a temporal role-based access control model , 2000, RBAC '00.

[8] Elisa Bertino,et al. X-GTRBAC: an XML-based policy specification framework and architecture for enterprise-wide access control , 2005, TSEC.

[9] Antonio Iera,et al. The Internet of Things: A survey , 2010, Comput. Networks.