Identifying, authenticating and authorizing smart objects and end users to cloud services in Internet of Things

Beltrán, Marta

doi:10.1016/j.cose.2018.05.011

Cited by 16 publications

(7 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…With the increasing number of terminals, wireless communication networks are facing great pressure on system security and privacy. Since the number of terminals is huge, the security of the equipment itself cannot be comprehensively guaranteed (Beltrán, 2018). Malicious software and programs can attack the IoT systems to obtain and gain access to identity information, resulting in a significant impact on network security.…”

Section: Figure 1 Relationship Between Product Identification Verification and Authenticationmentioning

confidence: 99%

An End-to-End Bidirectional Authentication System for Pallet Pooling Management Through Blockchain Internet of Things (BIoT)

Long¹,

Tsang

et al. 2021

Journal of Organizational and End User Computing

View full text Add to dashboard Cite

Pallet pooling is regarded as a sustainable and cost-effective measure for the industry, but challenging to advocate due to weak data and pallet authentication.In order to establish trust between end-users and pallet pooling services, we propose an end-to-end, bidirectional authentication system for transmitted data and pallets based on blockchain and Internet-of-things (IoT) technologies. In addition, secure data authentication fosters the pallet authenticity in the whole supply chain network, which is achieved by considering the tag, location, and object-specific features. To evaluate the object-specific features, the scale invariant feature transform (SIFT) approach is adopted to match key-points and descriptors between two pallet images. According to the case study, it is found that the proposed system provides a low bandwidth blocking rate and a high probability of restoring complete data payloads. Consequently, positive influences on end-user satisfaction, quality of service, operational errors, and pallet traceability are achieved through the deployment of the proposed system.

show abstract

Section: Figure 1 Relationship Between Product Identification Verification and Authenticationmentioning

confidence: 99%

An End-to-End Bidirectional Authentication System for Pallet Pooling Management Through Blockchain Internet of Things (BIoT)

Long¹,

Tsang

et al. 2021

Journal of Organizational and End User Computing

View full text Add to dashboard Cite

show abstract

“…In particular in the fields of PIoT, IoHT, and IoV involve substantial amounts of sensitive data, making them susceptible to potential privacy harm from indirect communication attacks. To address the potential risk of exploitation in indirect communication, advanced control measures and flexible identity authentication processes may be necessary in certain contexts, according to Beltrán (2018). Strategies like SDP and IAM can prove useful in enhancing data access control and improving identity authentication in complex networked environments, thereby reducing the chances of security breaches associated with indirect communication.…”

Section: Indirect Communicationmentioning

confidence: 99%

“…With a dependable and secure framework for managing user identities, access controls, and authentication mechanisms, IAM can effectively prevent unauthorized access to the cloud and improve security. In one example, the reference in Beltrán (2018) proposed a IAM mechanism, allowing federated and token-based identification, authentication and authorization of IoT agents (mainly smart objects and network devices but also end users via smart objects) to cloud services and applications running on traditional data centers (deployed locally or in the cloud) or on fog computing nodes, i.e. IoT-cloud services.…”

Section: Indirect Communicationmentioning

confidence: 99%

Dissecting zero trust: research landscape and its implementation in IoT

Liu,

Tan,

et al. 2024

Cybersecurity

View full text Add to dashboard Cite

As a progressive security strategy, the zero trust model has attracted notable attention and importance within the realm of network security, especially in the context of the Internet of Things (IoT). This paper aims to evaluate the current research regarding zero trust and to highlight its practical applications in the IoT sphere through extensive bibliometric analysis. We also delve into the vulnerabilities of IoT and explore the potential role of zero trust security in mitigating these risks via a thorough review of relevant security schemes. Nevertheless, the challenges associated with implementing zero trust security are acknowledged. We provide a summary of these issues and suggest possible pathways for future research aimed at overcoming these challenges. Ultimately, this study aims to serve as a strategic analysis of the zero trust model, intending to empower scholars in the field to pursue deeper and more focused research in the future.

show abstract

“…Identity and access management systems effectively reduce cloud-based risks, they provide a secure password and digital certificate management [21]. A large number of studies have focused on IAM methods, IAM policies and their execution and overarching access control models in recent years.…”

Section: Literature Surveymentioning

confidence: 99%

Identity Governance Framework for Privileged Users

Alruwies¹,

Mishra²,

Alshehri³

2022

Computer Systems Science and Engineering

View full text Add to dashboard Cite

Information technology companies have grown in size and recognized the need to protect their valuable assets. As a result, each IT application has its authentication mechanism, and an employee needs a username and password. As the number of applications increased, as a result, it became increasingly complex to manage all identities like the number of usernames and passwords of an employee. All identities had to be retrieved by users. Both the identities and the access rights associated with those identities had to be protected by an administrator. Management couldn't even capture such access rights because they couldn't verify things like privacy and security. Identity management can help solve this problem. The concept behind identity management is to centralize identity management and manage access identity centrally rather than multiple applications with their authentication and authorization mechanisms. In this research work, we develop governance and an identity management framework for information and technology infrastructures with privileged access management, consisting of cybersecurity policies and strategies. The results show the efficiency of the framework compared to the existing information security components. The integrated identity and access management and privileged access management enable organizations to respond to incidents and facilitate compliance. It can automate use cases that manage privileged accounts in the real world.

show abstract

Identifying, authenticating and authorizing smart objects and end users to cloud services in Internet of Things

Cited by 16 publications

References 12 publications

An End-to-End Bidirectional Authentication System for Pallet Pooling Management Through Blockchain Internet of Things (BIoT)

An End-to-End Bidirectional Authentication System for Pallet Pooling Management Through Blockchain Internet of Things (BIoT)

Dissecting zero trust: research landscape and its implementation in IoT

Identity Governance Framework for Privileged Users

Contact Info

Product

Resources

About