Implementation of open authentication protocol for IoT based application

Kinikar, Swati; Terdal, Sujata

doi:10.1109/inventive.2016.7823267

Cited by 8 publications

(4 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Other approaches have used ABAC models, combined in some cases with the second version of the OAuth protocol (OAuth 2.0) or the Constrained Application Protocol (CoAP), to protect access to the data [12,13]. The authors of [14] propose an approach targeting HTTP/CoAP services to provide an authorization framework that can be integrated by invoking an external OAuth-based Authorization Service (OAS).…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

IAACaaS: IoT Application-Scoped Access Control as a Service

et al. 2017

View full text Add to dashboard Cite

access control is a key element when guaranteeing the security of online services. However, devices that make the Internet of Things have some special requirements that foster new approaches to access control mechanisms. Their low computing capabilities impose limitations that make traditional paradigms not directly applicable to sensors and actuators. In this paper, we propose a dynamic, scalable, IoT-ready model that is based on the OAuth 2.0 protocol and that allows the complete delegation of authorization, so that an as a service access control mechanism is provided. Multiple tenants are also supported by means of application-scoped authorization policies, whose roles and permissions are fine-grained enough to provide the desired flexibility of configuration. Besides, OAuth 2.0 ensures interoperability with the rest of the Internet, yet preserving the computing constraints of IoT devices, because its tokens provide all the necessary information to perform authorization. The proposed model has been fully implemented in an open-source solution and also deeply validated in the scope of FIWARE, a European project with thousands of users, the goal of which is to provide a framework for developing smart applications and services for the future Internet. We provide the details of the deployed infrastructure and offer the analysis of a sample smart city setup that takes advantage of the model. We conclude that the proposed solution enables a new access control as a service paradigm that satisfies the special requirements of IoT devices in terms of performance, scalability and interoperability.

show abstract

Section: Related Workmentioning

confidence: 99%

“…This makes it easy to integrate in any device. On the other hand, the use of HTTP or CoAP makes the communication extremely light [12,13]. Therefore, this approach meets the computational restrictions that the Device imposes.…”

Section: The Iot Devicementioning

confidence: 99%

IAACaaS: IoT Application-Scoped Access Control as a Service

et al. 2017

View full text Add to dashboard Cite

show abstract

“…Through the support of innovative start-ups, small and medium-sized enterprises (SMEs), and farmers, ATLAS enables new business models for the farmers and establishes sustainable business ecosystems based on innovative data-driven services. In parallel, the establishment of a Representational State Transfer (REST) architecture as the best standard to design and deploy internet of things applications (IoT apps) in servercloud environments [27,28], in combination with secure transfer protocols, such as OAuth 2 (Open Authorization) [29], has rendered the interconnection and interoperability between IoT apps fast, reliable, and secure.…”

Section: Introductionmentioning

confidence: 99%

SENSE-GDD: A Satellite-Derived Temperature Monitoring Service to Provide Growing Degree Days

et al. 2023

View full text Add to dashboard Cite

A new satellite-enabled interoperable service has been developed to provide high spatiotemporal and continuous time series of Growing Degree Days (GDDs) at the field. The GDDs are calculated from MSG-SEVIRI data acquired by the EUMETCast station operated by IAASARS/NOA and downscaled on-the-fly to increase the initial coarse spatial resolution from the original 4–5 km to 1 km. The performance of the new service SENSE-GDD, in deriving reliable GDD timeseries at dates very close to key phenological stages, is assessed using in situ air temperature measurements from weather stations installed in Gerovassiliou Estate vineyard at Epanomi (Northern Greece) and an apple orchard at Agia (Central Greece). Budburst, pollination, and the start of veraison are selected as key phenological stages for the vineyards, whilst budburst and pollination for the apple orchard. The assessment shows that SENSE-GDD provided uninterrupted accurate measurements in both crop types. A distinct feature is that the proposed service can support decisions in non-instrumented crop fields in a cost-effective way, paving the way for its extended operational use in agriculture.

show abstract

“…With regard to IoT some approaches have used ABAC models, combined in some cases with the second version of the OAuth protocol (OAuth2) or the Constrained Application Protocol (CoAP), to protect the access to data [4] [5].…”

Section: Introductionmentioning

confidence: 99%

A model to enable application-scoped access control as a service for IoT using OAuth 2.0

Fernández

Alonso

Marco

et al. 2017

2017 20th Conference on Innovations in Clouds, Internet and Networks (ICIN)

View full text Add to dashboard Cite

Abstract-Access Control is crucial for security management, but in the context of the Internet of Things it cannot be implemented the same way as traditional systems do. Indeed, devices that make the Internet of Things impose some constraints that encourage the design of new access control mechanisms, which should provide flexibility of configuration, as well as support several authorization scopes at the same time, yet being computationally light, dynamic and scalable in order to be ready for the forthcoming Cloud Computing paradigm. In this paper we propose an authorization model that is based on the OAuth 2.0 protocol. From the point of view of the identity provider, this model allows managing roles and permissions for an application-scoped authorization, to enable more flexible scenarios in which multiple tenants take part. With regard to devices, the OAuth 2.0 makes authorization extremely light, because all the required information is provided with a token. Considering all this, authorization management is completely delegated to an external system, so that an as-a-service access control mechanism is provided. The proposed model complies with the security, flexibility and performance requirements that are needed in the Internet of Things paradigm.

show abstract

Implementation of open authentication protocol for IoT based application

Cited by 8 publications

References 2 publications

IAACaaS: IoT Application-Scoped Access Control as a Service

IAACaaS: IoT Application-Scoped Access Control as a Service

SENSE-GDD: A Satellite-Derived Temperature Monitoring Service to Provide Growing Degree Days

A model to enable application-scoped access control as a service for IoT using OAuth 2.0

Contact Info

Product

Resources

About