Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources

Internet growth has generated new types of services where the use of sensors and actuators is especially remarkable. These services compose what is known as the Internet of Things (IoT). One of the biggest current challenges is obtaining a safe and easy access control scheme for the data managed in...

Descripción completa

Detalles Bibliográficos
Autores: Rivera Pinto, Diego|||0000-0002-7076-9048, Marsá Maestre, Iván|||0000-0002-5529-2851, Hoz de la Hoz, Enrique de la|||0000-0003-4837-3837, Velasco Pérez, Juan Ramón|||0000-0003-0239-1116
Tipo de recurso: artículo
Fecha de publicación:2018
País:España
Institución:Universidad de Alcalá (UAH)
Repositorio:e_Buah Biblioteca Digital Universidad de Alcalá
Idioma:inglés
OAI Identifier:oai:ebuah.uah.es:10017/32818
Acceso en línea:http://hdl.handle.net/10017/32818
https://dx.doi.org/10.3390/s18030917
Access Level:acceso abierto
Palabra clave:Access control
Internet of Things (IoT)
Security
MQTT
OAuth
Telecomunicaciones
Telecommunication
id ES_5cb8a6bb7fe45bc487b2b181f5113c1f
oai_identifier_str oai:ebuah.uah.es:10017/32818
network_acronym_str ES
network_name_str España
repository_id_str
spelling Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as ResourcesRivera Pinto, Diego|||0000-0002-7076-9048Marsá Maestre, Iván|||0000-0002-5529-2851Hoz de la Hoz, Enrique de la|||0000-0003-4837-3837Velasco Pérez, Juan Ramón|||0000-0003-0239-1116Access controlInternet of Things (IoT)SecurityMQTTOAuthTelecomunicacionesTelecommunicationInternet growth has generated new types of services where the use of sensors and actuators is especially remarkable. These services compose what is known as the Internet of Things (IoT). One of the biggest current challenges is obtaining a safe and easy access control scheme for the data managed in these services. We propose integrating IoT devices in an access control system designed for Web-based services by modelling certain IoT communication elements as resources. This would allow us to obtain a unified access control scheme between heterogeneous devices (IoT devices, Internet-based services, etc.). To achieve this, we have analysed the most relevant communication protocols for these kinds of environments and then we have proposed a methodology which allows the modelling of communication actions as resources. Then, we can protect these resources using access control mechanisms. The validation of our proposal has been carried out by selecting a communication protocol based on message exchange, specifically Message Queuing Telemetry Transport (MQTT). As an access control scheme, we have selected User-Managed Access (UMA), an existing Open Authorization (OAuth) 2.0 profile originally developed for the protection of Internet services. We have performed tests focused on validating the proposed solution in terms of the correctness of the access control system. Finally, we have evaluated the energy consumption overhead when using our proposal.Ministerio de Economía y CompetitividadUniversidad de Alcalá20182018-03-20journal articlehttp://purl.org/coar/resource_type/c_6501NAhttp://purl.org/coar/version/c_be7fb7dd8ff6fe43info:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10017/32818https://dx.doi.org/10.3390/s18030917reponame:e_Buah Biblioteca Digital Universidad de Alcaláinstname:Universidad de Alcalá (UAH)InglésengMinisterio de Economía y Competitividad http://dx.doi.org/10.13039/501100003329 Not available TIN2013-47803-C2-2-R DESARROLLO DE JUGUETES INTELIGENTES PARA ATENCION TEMPRANA A NIÑOS CON TRASTORNOS DEL DESARROLLO EN EL ENTORNO EDUCATIVO Y EN EL HOGAR DIGITALUAH Not available AE2017-3Ministerio de Economía y Competitividad http://dx.doi.org/10.13039/501100003329 Not available BES-2014-067912 BES-2014-067912open accesshttp://purl.org/coar/access_right/c_abf2Attribution 4.0 Internationalhttp://creativecommons.org/licenses/by/4.0/info:eu-repo/semantics/openAccessoai:ebuah.uah.es:10017/328182026-06-18T11:13:07Z
dc.title.none.fl_str_mv Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
title Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
spellingShingle Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
Rivera Pinto, Diego|||0000-0002-7076-9048
Access control
Internet of Things (IoT)
Security
MQTT
OAuth
Telecomunicaciones
Telecommunication
title_short Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
title_full Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
title_fullStr Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
title_full_unstemmed Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
title_sort Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources
dc.creator.none.fl_str_mv Rivera Pinto, Diego|||0000-0002-7076-9048
Marsá Maestre, Iván|||0000-0002-5529-2851
Hoz de la Hoz, Enrique de la|||0000-0003-4837-3837
Velasco Pérez, Juan Ramón|||0000-0003-0239-1116
author Rivera Pinto, Diego|||0000-0002-7076-9048
author_facet Rivera Pinto, Diego|||0000-0002-7076-9048
Marsá Maestre, Iván|||0000-0002-5529-2851
Hoz de la Hoz, Enrique de la|||0000-0003-4837-3837
Velasco Pérez, Juan Ramón|||0000-0003-0239-1116
author_role author
author2 Marsá Maestre, Iván|||0000-0002-5529-2851
Hoz de la Hoz, Enrique de la|||0000-0003-4837-3837
Velasco Pérez, Juan Ramón|||0000-0003-0239-1116
author2_role author
author
author
dc.subject.none.fl_str_mv Access control
Internet of Things (IoT)
Security
MQTT
OAuth
Telecomunicaciones
Telecommunication
topic Access control
Internet of Things (IoT)
Security
MQTT
OAuth
Telecomunicaciones
Telecommunication
description Internet growth has generated new types of services where the use of sensors and actuators is especially remarkable. These services compose what is known as the Internet of Things (IoT). One of the biggest current challenges is obtaining a safe and easy access control scheme for the data managed in these services. We propose integrating IoT devices in an access control system designed for Web-based services by modelling certain IoT communication elements as resources. This would allow us to obtain a unified access control scheme between heterogeneous devices (IoT devices, Internet-based services, etc.). To achieve this, we have analysed the most relevant communication protocols for these kinds of environments and then we have proposed a methodology which allows the modelling of communication actions as resources. Then, we can protect these resources using access control mechanisms. The validation of our proposal has been carried out by selecting a communication protocol based on message exchange, specifically Message Queuing Telemetry Transport (MQTT). As an access control scheme, we have selected User-Managed Access (UMA), an existing Open Authorization (OAuth) 2.0 profile originally developed for the protection of Internet services. We have performed tests focused on validating the proposed solution in terms of the correctness of the access control system. Finally, we have evaluated the energy consumption overhead when using our proposal.
publishDate 2018
dc.date.none.fl_str_mv 2018
2018-03-20
dc.type.none.fl_str_mv journal article
http://purl.org/coar/resource_type/c_6501
NA
http://purl.org/coar/version/c_be7fb7dd8ff6fe43
dc.type.openaire.fl_str_mv info:eu-repo/semantics/article
format article
dc.identifier.none.fl_str_mv http://hdl.handle.net/10017/32818
https://dx.doi.org/10.3390/s18030917
url http://hdl.handle.net/10017/32818
https://dx.doi.org/10.3390/s18030917
dc.language.none.fl_str_mv Inglés
eng
language_invalid_str_mv Inglés
language eng
dc.relation.none.fl_str_mv Ministerio de Economía y Competitividad http://dx.doi.org/10.13039/501100003329 Not available TIN2013-47803-C2-2-R DESARROLLO DE JUGUETES INTELIGENTES PARA ATENCION TEMPRANA A NIÑOS CON TRASTORNOS DEL DESARROLLO EN EL ENTORNO EDUCATIVO Y EN EL HOGAR DIGITAL
UAH Not available AE2017-3
Ministerio de Economía y Competitividad http://dx.doi.org/10.13039/501100003329 Not available BES-2014-067912 BES-2014-067912
dc.rights.none.fl_str_mv open access
http://purl.org/coar/access_right/c_abf2
Attribution 4.0 International
http://creativecommons.org/licenses/by/4.0/
dc.rights.openaire.fl_str_mv info:eu-repo/semantics/openAccess
rights_invalid_str_mv open access
http://purl.org/coar/access_right/c_abf2
Attribution 4.0 International
http://creativecommons.org/licenses/by/4.0/
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:e_Buah Biblioteca Digital Universidad de Alcalá
instname:Universidad de Alcalá (UAH)
instname_str Universidad de Alcalá (UAH)
reponame_str e_Buah Biblioteca Digital Universidad de Alcalá
collection e_Buah Biblioteca Digital Universidad de Alcalá
repository.name.fl_str_mv
repository.mail.fl_str_mv
_version_ 1869408936826765312
score 15,300724