Context-aware and Attribute-based Access Control Applying Proactive Computing to IoT System
English
Picard, Noé[University of Namur > 1PReCISE Research Center]
Colin, Jean-Noël[University of Namur > 1PReCISE Research Center]
Zampunieris, Denis[University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
2018
Proceedings of the 3rd International Conference on Internet of Things, Big Data and Security (IoTBDS 2018)
SCITEPRESS
333-339
Yes
No
International
978-989-758-296-7
SPBDIoT 2018 – Special Session on Recent Advances on Security, Privacy, Big Data and Internet of Things at the 3rd International Conference on Internet of Things, Big Data and Security (IoTBDS 2018)
19 - 21 March, 2018
Funchal, Madeira
Portugal
[en] Internet of Things ; Access Control ; ABAC ; Event Analysis ; Proactive Computing
[en] ABAC allows for high flexibility in access control over a system through the definition of policies based on attribute values. In the context of an IoT-based system, these data can be supplied through its sensors connected to the real world, allowing for context-awareness. However, the ABAC model alone does not include proposals for implementing security policies based on verified and/or meaningful values rather than on raw data flowing from the sensors. Nor does it allow to implement immediate action on the system when some security flaw is detected, while this possibility technically exists if the system is equipped with actuators next to its sensors. We show how to circumvent these limitations by adding a proactive engine to the ABAC components, that runs rule-based scenarios devoted to sensor data pre-processing, to higher-level information storage in the PIP, and to real-time, automatic reaction on the system through its actuators when required.
[University of Namur > 1PReCISE Research Center]
