Attribute-Based Access Control for the Swarm With Distributed Policy Management

Fedrecheski, Geovane; Biase, Laisa C. C. De; Calcina-Ccori, Pablo C.; Zuffo, Marcelo Knörich

doi:10.1109/tce.2018.2883382

Cited by 22 publications

(8 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…e attribute-based access control model (ABAC) is an emerging access control model that has attracted much attention from scholars. e ABAC model has many excellent features such as fine-grained, flexible, dynamic, identity-less, and rich policy expression, which makes it have a wide range of application scenarios, such as distributed computing [16], Internet of ings (IoT) healthcare [17], IoT home devices [18], financial industry [19], and so on. While there is currently no single agreedupon model or standardization of ABAC, there are commonly accepted high-level definitions and descriptions of its function.…”

Section: Abac Modelmentioning

confidence: 99%

ABSAC: Attribute-Based Access Control Model Supporting Anonymous Access for Smart Cities

Zhang

Liu

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

Smart cities require new access control models for Internet of Things (IoT) devices that preserve user privacy while guaranteeing scalability and efficiency. Researchers believe that anonymous access can protect the private information even if the private information is not stored in authorization organization. Many attribute-based access control (ABAC) models that support anonymous access expose the attributes of the subject to the authorization organization during the authorization process, which allows the authorization organization to obtain the attributes of the subject and infer the identity of the subject. The ABAC with anonymous access proposed in this paper called ABSAC strengthens the identity-less of ABAC by combining homomorphic attribute-based signatures (HABSs) which does not send the subject attributes to the authorization organization, reducing the risk of subject identity re-identification. It is a secure anonymous access framework. Tests show that the performance of ABSAC implementation is similar to ABAC’s performance.

show abstract

Section: Abac Modelmentioning

confidence: 99%

ABSAC: Attribute-Based Access Control Model Supporting Anonymous Access for Smart Cities

Zhang

Liu

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…This method ensured data confidentiality and user legitimacy in the mobile cloud computing system. In [26], a distributed attribute-based access control system was presented, which provided a distributed policy management to allow users to set up policies for the Internet of Things (IoT) devices. This method ensured confidentiality and prevented network attacks at the edge of networks.…”

Section: B Access Control Technologymentioning

confidence: 99%

A Smart Collaborative Authentication Framework for Multi-Dimensional Fine-Grained Control

Liu

et al. 2020

IEEE Access

View full text Add to dashboard Cite

The emergence of the 5G network has brought broad prospects for the massive terminal access and ubiquitous Internet of Things (IoTs). Potential attacking opportunities triggered by this progress are severely impacting the security fortress of current networks, especially in the edge access part. However, due to the unitary protection and inferior isolation, available security schemes are incapable of effectively eliminating these hidden perils. Motivated by these facts, we propose a Multi-dimensional Fine-grained Control (MFC) framework to strengthen safety and reliability in Radio Access Networks (RANs). First, we comprehensively survey and summarize the existing security schemes to grasp respective effects and limitations. Second, the MFC framework is established to describe the model structure and implementation processes. An identifier mapping mechanism is designed to achieve network isolation. We perform the security analysis of MFC by theoretically comparing diversified policies. Third, an integrated set of the authentication prototype system is created with wireless environment parameters settings. Specific verification scenarios are illustrated. Finally, we test the performances of the MFC framework. Validation results demonstrate that the proposed scheme can accomplish reliable security control at the access side. Comparing to multiple schemes, the performances, in terms of time and concurrency, are optimized. Therefore, the MFC framework is feasible for applications in 5G or IoT.

show abstract

“…The referred attributes can be related to the subject, the object, environment conditions, and policies. The ABAC-based model created in the Swarm platform is called ABAC-them (Fedrecheski et al, 2018) and focuses on combining simplicity and expressiveness. The main characteristics of ABAC-them model are:…”

Section: Access Control Modelmentioning

confidence: 99%

“…An entire section is devoted for each component, explaining the rationale, architecture and examples. Table 4.1, the Swarm access control model, proposed by Fedrecheski et al (2018) and described in Section 2.1.6, de nes a policy-based mechanism to constrain the temporal use of a service. In future versions of this framework, both models will be uni ed in a single comprehensive block.…”

Section: Framework Architecturementioning

confidence: 99%

See 1 more Smart Citation

A framework for device interaction in a network of things

Ccori¹

View full text Add to dashboard Cite

grateful. This thesis was inspired by the insightful work from Dr. Laisa Costa, who patiently accompanied this work from its inception. Her advice and opportune feedback were essential to conduct the present thesis until a satisfactory conclusion. Whenever I was in doubt in the capricious course of the research path, I could always rely on the accurate advice from my second advisor, Prof. Flávio Corrêa da Silva. After long sessions of conversation accompanied by a cup of good co ee, Prof. Corrêa da Silva o ered the wise words I needed. My third advisor, Prof. Marcelo Zu o, was undoubtedly the cornerstone of this cooperation. As the leader of the Interdisciplinary Center of Interactive Technologies (CITI), he is responsible for the development of cutting-edge technology in Brazil, of which this thesis is a humble sample. Proving that the whole if greater than the sum of the parts, the Swarm team at CITI has produced a tremendous work during these years, in the form of scienti c articles, system design, software architecture, application development and abundant documentation. This thesis has directly bene ted from that development and I would like to express my gratitude to all the talented people that participated in the Swarm team. Mr. Geovane Fedrecheski provided the o cial SwarmBroker implementation and the initial version of the SwarmLib, on top of which I implemented the framework. Mr. Carlos Laschi actively collaborated in the de nition of the Geolocation Ontology for the Swarm that is presented in this work. Mr. Gabriel Duarte and Mr. Phillipe Rangel participated in the de nition of the economic model for the Swarm, also presented in this thesis. Mr. Guilherme C. Marques and Matheus Guinezi contributed with the initial version of the Swar-mAssistant, which is the basis of the case study used in this work. Also, Dr. Samira Afzal kindly helped with the revision of this document.

show abstract

Attribute-Based Access Control for the Swarm With Distributed Policy Management

Cited by 22 publications

References 23 publications

ABSAC: Attribute-Based Access Control Model Supporting Anonymous Access for Smart Cities

ABSAC: Attribute-Based Access Control Model Supporting Anonymous Access for Smart Cities

A Smart Collaborative Authentication Framework for Multi-Dimensional Fine-Grained Control

A framework for device interaction in a network of things

Contact Info

Product

Resources

About