A fuzzy approach to trust based access control in internet of things

Mahalle, Parikshit N.; Thakre, P. A.; Prasad, Neeli R.; Prasad, Ramjee

doi:10.1109/vitae.2013.6617083

Cited by 123 publications

(66 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Liu combined the dynamic hierarchical fuzzy system with trust evaluation, then introduced a fuzzy multiattribute trust access control scheme for cloud manufacturing system [28]. Mahalle et al [29] developed a trust-extended fuzzy authorization scheme and put forward the concept of trust rating for identity management. Context awareness is a significant precondition for accurately perceiving and properly handling risks.…”

Section: Related Workmentioning

confidence: 99%

“…By estimating the risk of the certain request based on the specific involving information and comparing the risk with some preset acceptance criteria of risk, these risk-oriented enhanced models have achieved flexible and efficient unattended authorizations for urgent requests which do not comply with the basic access rules in original models. More recently, risk and trust evaluation schemes are increasingly viable in access control when taking more parameters (e.g., environment states) into account, which yields more expressive and flexible solutions [27][28][29][30][31]. Because of these encouraging attempts, we are reasonably confident that the ABAC paradigm will benefit from risk evaluation schemes as well, especially the more flexible and efficient decision-making ability to deal with exceptional urgent access requests in dynamic and complex access environments.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Feasible Fuzzy-Extended Attribute-Based Access Control Technique

Gao

Zeng

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

Attribute-based access control (ABAC) is a maturing authorization technique with outstanding expressiveness and scalability, which shows its overwhelmingly competitive advantage, especially in complicated dynamic environments. Unfortunately, the absence of a flexible exceptional approval mechanism in ABAC impairs the resource usability and business time efficiency in current practice, which could limit its growth. In this paper, we propose a feasible fuzzy-extended ABAC (FBAC) technique to improve the flexibility in urgent exceptional authorizations and thereby improving the resource usability and business timeliness. We use the fuzzy assessment mechanism to evaluate the policy-matching degrees of the requests that do not comply with policies, so that the system can make special approval decisions accordingly to achieve unattended exceptional authorizations. We also designed an auxiliary credit mechanism accompanied by periodic credit adjustment auditing to regulate expediential authorizations for mitigating risks. Theoretical analyses and experimental evaluations show that the FBAC approach enhances resource immediacy and usability with controllable risk.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Feasible Fuzzy-Extended Attribute-Based Access Control Technique

Gao

Zeng

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Trust has been accepted as one of the key factors for enhancing user privacy and system security, and for establishing seamless connectivity and reliable services. Recently, many research groups have been intensively working on trust-related areas in various environments from peer to peer (P2P) to IoT, varying in many applications from access control [7] to e-commerce [8] [9].…”

Section: A Trust In Iotmentioning

confidence: 99%

Leverage a Trust Service Platform for Data Usage Control in Smart City

Truong

Cao

Um³

et al. 2016

2016 IEEE Global Communications Conference (GLOBECOM)

View full text Add to dashboard Cite

Abstract-In the Internet of Thing, data is almost collected, aggregated and analyzed without human intervention by machineto-machine communications resulting in raising serious challenges on access control. Particularly in Smart City ecosystems in which multi-modal data comes from heterogeneous sources, data owners cannot imagine how their data is used to extract sensitive information. Thus, there is a critical need for novel access control methods that minimize privacy risks while increase ability of personalized access control. Our solution is to build a trust-based usage control mechanism called TUCON that enables stakeholders to set access control policies based on their trust relationships with data consumers. In this study, we introduce two novel paradigms integrated in the Smart City shared platform: a Trust Service Platform and a Data Usage Control, then bring them together to establish the new mechanism. The conceptual model, the architecture, the formalization, and the practical development of TUCON is described in detail. We also show the roles and the interactions of TUCON components in the Smart City platform. Our contributions lie in a new trust model with a trust computation procedure based on semantic web technologies, a novel trust-based usage control conceptual model including a formalization, a practical expression and an architecture for Smart City systems. We believe this study provides better understanding on both trust and usage control in the Internet of Things and opens several important research directions in the future.

show abstract

“…In [38] a key management system similar to PANA is proposed, making it redundant. One approach to a fuzzy trust based access control is defined in [40], however, their trust system is a concept tested with only simulations.…”

Section: Analysis Of the State Of The Art On Trustiness For Iotmentioning

confidence: 99%

A Survey on Wireless Sensors Networks Security Based on a Layered Approach

Fuentes-Samaniego¹,

Cavalli²,

Nolazco-Flores

et al. 2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The Internet of Things (IoT) is one of the most novel networking paradigms and there are yet too many technologies defining themselves as IoT complicating the scenario for developing a fully IoT environment. The situation becomes even harder when security and privacy are considered. In this paper, we present a survey on the security aspects of an IoT conformed by wireless sensors communicating through the IEEE 802.15.4 standard. This survey follows a revision of the state of art in a layer-by-layer systematic analysis.

show abstract

A fuzzy approach to trust based access control in internet of things

Cited by 123 publications

References 16 publications

A Feasible Fuzzy-Extended Attribute-Based Access Control Technique

A Feasible Fuzzy-Extended Attribute-Based Access Control Technique

Leverage a Trust Service Platform for Data Usage Control in Smart City

A Survey on Wireless Sensors Networks Security Based on a Layered Approach

Contact Info

Product

Resources

About