Title: A trust and attribute-based access control framework in internet of things

Authors: Junshe Wang; Han Wang; Hongbin Zhang

Addresses: School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China ' School of Information Science and Engineering, Hebei University of Science and Technology, Shijiazhuang, 050018, China; Hebei Key Laboratory of Network and Information Security, Hebei Normal University, 050024, China

Abstract: Internet of things (IoT) is widely used in kinds of environment where cloud computing provides super-strong computing support. However, it becomes a key issue that each node can access data under control within the human intention and data is shared securely in distributed IoT environment. Moreover, nodes may belong to different security domains, and data must be accessed only by selected users which could ensure the security of IoT system. Therefore, an effective access control technique is the key point to solve this issue. To address the problems of security, scalability and cross-domain, this paper proposes a fine-grained and dynamic access control model which combines ABAC with trust mechanism and considers dynamic trust attribute and static multi-attribute as synthetic constraints. The simulation results show the feasibility and effectiveness of the proposed scheme, which provides superior characteristics and improves the security of IoT system.

Keywords: internet of things; IoT; attribute-based; trust evaluation; access control.

DOI: 10.1504/IJES.2020.105285

International Journal of Embedded Systems, 2020 Vol.12 No.1, pp.116 - 124

Received: 09 Dec 2017
Accepted: 19 Mar 2018
Published online: 24 Feb 2020 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article