Efficient Access-control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Ziegler, Dominik; Marsalek, Alexander; Prünster, Bernd; Sabongui, Josef

doi:10.5220/0009792805470552

Cited by 5 publications

(4 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The concept of zero trust in IoT means that all data traffic generated within the IoT ecosystem must be treated with skepticism and thoroughly evaluated, regardless of whether it originates from internal or external sources (Zolotukhin et al 2022;). To address the security challenges posed by the IoT, various dynamic (Wu et al 2021), fine-grained (Abreu et al 2020) and lightweight access Ziegler et al 2020;Ahmed et al 2023) control models have been developed, using a combination of cryptography, machine learning, and SDP. These models are based on multi-source heterogeneous data, including attributes of users and devices, behavioral patterns, application integrity, and flow baselines.…”

Section: Analyzing Key Research Hotspots and Future Trends For Zero T...mentioning

confidence: 99%

Dissecting zero trust: research landscape and its implementation in IoT

Liu,

Tan,

et al. 2024

Cybersecurity

View full text Add to dashboard Cite

As a progressive security strategy, the zero trust model has attracted notable attention and importance within the realm of network security, especially in the context of the Internet of Things (IoT). This paper aims to evaluate the current research regarding zero trust and to highlight its practical applications in the IoT sphere through extensive bibliometric analysis. We also delve into the vulnerabilities of IoT and explore the potential role of zero trust security in mitigating these risks via a thorough review of relevant security schemes. Nevertheless, the challenges associated with implementing zero trust security are acknowledged. We provide a summary of these issues and suggest possible pathways for future research aimed at overcoming these challenges. Ultimately, this study aims to serve as a strategic analysis of the zero trust model, intending to empower scholars in the field to pursue deeper and more focused research in the future.

show abstract

Section: Analyzing Key Research Hotspots and Future Trends For Zero T...mentioning

confidence: 99%

Dissecting zero trust: research landscape and its implementation in IoT

Liu,

Tan,

et al. 2024

Cybersecurity

View full text Add to dashboard Cite

show abstract

“…Other examples include those of [13], [14]. Other approaches utilize attribute-based encryption, for example, to facilitate access control that publishes and revokes attributes [15]. Another example is a support online/offline data-sharing framework [16].…”

Section: Related Workmentioning

confidence: 99%

A Blockchain-Based Shamir’s Threshold Cryptography Scheme for Data Protection in Industrial Internet of Things Settings

Tan

Yang

et al. 2022

IEEE Internet Things J.

View full text Add to dashboard Cite

The Industrial Internet of Things (IIoT), a typical Internet of Things (IoT) application, integrates the global industrial system with other advanced computing, analysis, and sensing technologies through Internet connectivity. Due to the limited storage and computing capacity of edge and IIoT devices, data sensed and collected by these devices are usually stored in the cloud. Encryption is commonly used to ensure privacy and confidentiality of IIoT data. However, the key used for data encryption and decryption is usually directly stored and managed by users or third-party organizations, which has security and privacy implications. To address this potential security and privacy risk, we propose a Shamir threshold cryptography scheme for IIoT data protection using blockchain: STCChain. Specifically, in our solution the edge gateway uses a symmetric key to encrypt the data uploaded by the IoT device and stores it in the cloud. The symmetric key is protected by a private key generated by the edge gateway. To prevent the loss of the private key and privacy leakage, we use a Shamir secret sharing algorithm to divide the private key, encrypt it, and publish it on the blockchain. We implement a prototype of STCChain using Xuperchain, and the results show that STCChain can effectively prevent attackers from stealing data as well as ensuring the security of the encryption key.

show abstract

“…In Attribute Based Encryption (ABE) [37]: both the data encryption and decryption could be performed, which has the advantages of better security and optimal performance outcomes. Still, it limits with the problems of increased cost consumption for key for key generation and encryption, and reduced scalability.…”

Section: Related Workmentioning

confidence: 99%

A Lightweight Searchable Encryption and Delegation Mechanism with Forward Privacy for Improving the Security of Industrial Internet of Things-Cloud Systems

Venkatesan

Rajeshwari

Ramakrishnan

2022

Preprint

View full text Add to dashboard Cite

Improving the security and privacy of the industrial data stored in cloud systems is one of the demanding and challenging problem in the recent days, due to the increased utilization rate of IIoT systems. For this purpose, various lightweight cryptographic models are developed in the conventional works, which are mainly focusing on ensuring the data security against the adversaries. However, it limits with the main problems of increased computational complexity, cost complexity, and time consumption, which degrades the performance of entire system. Hence, this paper objects to design an advanced cryptography models, named as Lightweight Searchable Encryption and Delegation (LSED) methodology with forward privacy for enabling the secured data storage and retrieval operations in IIoT-cloud systems. Moreover, the searchable encryption incorporated with the forward privacy property considers that the previously stored trapdoor is invalid for the recently updated cipher data, which efficiently enhances the security of IIoT data against the adversaries. During performance evaluation, there are various evaluation metrics have been utilized for validating the results of both existing and proposed searchable encryption techniques.

show abstract

Efficient Access-control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Cited by 5 publications

References 0 publications

Dissecting zero trust: research landscape and its implementation in IoT

Dissecting zero trust: research landscape and its implementation in IoT

A Blockchain-Based Shamir’s Threshold Cryptography Scheme for Data Protection in Industrial Internet of Things Settings

A Lightweight Searchable Encryption and Delegation Mechanism with Forward Privacy for Improving the Security of Industrial Internet of Things-Cloud Systems

Contact Info

Product

Resources

About