Ali Hariri scite author profile

The automotive industry is witnessing an accelerated growth in digital innovations that turn modern vehicles into digital systems. Such innovations include services that entertain, support and guide drivers and passengers such as fleet management, autonomous driving, shared mobility and private renting. This makes the security of modern vehicles a crucial concern as they have evolved into cyber-physical and safety-critical systems. Therefore, a continuous and stateful monitoring of the usage of vehicular resources has become a paramount requirement. Indeed, several Identity and Access Management (IAM) frameworks have been proposed in the automotive field, but context awareness and continuity of control remain overlooked. To address these challenges, we present a stateful smart-car IAM that is based on Usage Control (UCON) and Verifiable Credentials (VCs) to protect in-car resources. The system uses Attribute Based Access Control (ABAC) policies to issue privileges to subjects (i.e. drivers, passengers or applications) according to their credentials and claims. The issued privileges are then used to decide whether to grant or deny access to in-car resources. Furthermore, the system continuously monitors subject claims, resource attributes and environmental conditions (e.g. location or time). Hence, if a change occurs, the system re-evaluates policies and updates or revokes issued privileges and usage decisions accordingly. In addition, the system enforces the Principle of Least Privilege (PoLP) by only asking for the minimum privileges that are required to make a decision about a particular action. Finally, we describe the architecture and implementation of the proposed IAM, discuss the evaluation results, and define future directions.

show abstract

DataPAL: Data Protection and Authorization Lifecycle framework

Bandopadhyay

Dimitrakos

Diaz

et al. 2021

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Ali Hariri

Selective Forwarding Attack on IoT Home Security Kits

WiP: Metamodel for Continuous Authorisation and Usage Control

SIUV: A Smart Car Identity Management and Usage Control System Based on Verifiable Credentials

DataPAL: Data Protection and Authorization Lifecycle framework

Contact Info

Product

Resources

About