Federated system-to-service authentication and authorization combining PUFs and tokens

Beltrán, Marta; Calvo, Miguel; González, Sergio

doi:10.1109/recosoc.2017.8016157

Cited by 9 publications

(2 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some natural security requirements are mentioned, such as the CIA triad and non-repudiation. Beltrán et al [24] also target low-power devices, but they explore a setting in which these resource-constrained systems interact with Cloud services. In this scenario, they identify the need for identification, authentication, authorization, and accounting mechanisms.…”

Section: Access Controlmentioning

confidence: 99%

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

295

112

View full text Add to dashboard Cite

A key application of the Internet of Things (IoT) paradigm lies within industrial contexts. Indeed, the emerging Industrial Internet of Things (IIoT), commonly referred to as Industry 4.0, promises to revolutionize production and manufacturing through the use of large numbers of networked embedded sensing devices, and the combination of emerging computing technologies, such as Fog/Cloud Computing and Artificial Intelligence. The IIoT is characterized by an increased degree of inter-connectivity, which not only creates opportunities for the industries that adopt it, but also for cyber-criminals. Indeed, IoT security currently represents one of the major obstacles that prevent the widespread adoption of IIoT technology. Unsurprisingly, such concerns led to an exponential growth of published research over the last few years. To get an overview of the field, we deem it important to systematically survey the academic literature so far, and distill from it various security requirements as well as their popularity. This paper consists of two contributions: our primary contribution is a systematic review of the literature over the period 2011-2019 on IIoT Security, focusing in particular on the security requirements of the IIoT. Our secondary contribution is a reflection on how the relatively new paradigm of Fog computing can be leveraged to address these requirements, and thus improve the security of the IIoT.

show abstract

Section: Access Controlmentioning

confidence: 99%

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

295

112

View full text Add to dashboard Cite

show abstract

“…Using federated schemes allow users to avoid managing as many user names and passwords as services they want to interact with. Instead, they ask for a token at some kind of identity provider or verifier and all services participating in the federation trust these tokens to solve authentication and/ or authorization [48]. (v) OpenID Connect is the OAuth 2.0-based replacement for OpenID 2.0 (OpenID) and one of the most important single sign-on (SSO) protocols used for delegated authentication.…”

Section: Knowledge Domainmentioning

confidence: 99%

Towards the Construction of a User Unique Authentication Mechanism on LMS Platforms through Model-Driven Engineering (MDE)

Cubides

Gaona-García

Salcedo-Salgado

2019

Scientific Programming

View full text Add to dashboard Cite

In LOD, authentication is a key factor in the security dimension of linked data quality models. is is the case of (a) LMS that manages open educational resources (OERs), in training process, and (b) LMS integrated platforms, which also require authenticating users. Authentication tackles a range of problems such as users forgetting passwords and time consumption in repetitive logins in different applications. In the context of linked OERs that are developed in LMS, it is necessary to design guidelines in order to carry out the authentication process. is process authorizes access to different linked resources platforms. erefore, to provide abstraction methods for this authentication process, it is proposed to work with model-driven architecture (MDA) approach. is paper proposes a security abstraction model on LMS, based on MDA. e proposed metamodel seeks to provide a set of guidelines on how to carry out unified authentication, establishing a common dialogue among stakeholders. Conclusion and future work are proposed in order to generate authentication instances that allow access to resources managed in different platforms.

show abstract

Cross-Domain Authentication and Interoperability Scheme for Federated Cloud

Gogna

Krishna

2019

Smart Systems and IoT: Innovations in Computing

View full text Add to dashboard Cite

Federated system-to-service authentication and authorization combining PUFs and tokens

Cited by 9 publications

References 8 publications

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Towards the Construction of a User Unique Authentication Mechanism on LMS Platforms through Model-Driven Engineering (MDE)

Cross-Domain Authentication and Interoperability Scheme for Federated Cloud

Contact Info

Product

Resources

About