You can view the full text of this article for free using the link below.

Title: Attribute-based access control and authentication mechanism using smart cards for cloud-based IoT applications

Authors: B.B. Gupta; Megha Quamara

Addresses: National Institute of Technology Kurukshetra, Mirzapur Part, Haryana 136119, India ' National Institute of Technology Kurukshetra, Mirzapur Part, Haryana 136119, India

Abstract: With exploding growth in information technology (IT), numerous services and applications having enhanced capabilities are coming into picture with an aim to serve the users. Internet of things (IoT) along with its enabling cutting-edge technologies is establishing a scenario where these services can be utilised effectively. However, with large number of users and applications, it becomes challenging to safeguard the identifying information being transmitted to provide access to these services. This paper presents a refined version of an integrated attribute-based access control and authentication mechanism using smart cards for cloud-based IoT applications. System-wide attributes not only restrict the users to access the remote cloud services, but also ensure user anonymity. We also implement the proposed mechanism on ACPT and AVISPA tool for its validation and to verify its correctness. Moreover, we present an analysis of its security and performance efficiency on the basis of different parameters.

Keywords: attribute; access control; authentication; authorisation; smart cards; cloud; internet of things; IoT; access control policy testing; ACPT; AVISPA; on-the-fly model checker; OFMC.

DOI: 10.1504/IJES.2020.108280

International Journal of Embedded Systems, 2020 Vol.13 No.1, pp.40 - 49

Received: 06 Oct 2018
Accepted: 02 Feb 2019

Published online: 11 May 2020 *

Full-text access for editors Access for subscribers Free access Comment on this article