Technical Enforcement of European Privacy Legislation: An Access Control Approach

IoT-CCAC: a blockchain-based consortium capability access control approach for IoT

PeerJ Computer Science ◽

10.7717/peerj-cs.455 ◽

2021 ◽

Vol 7 ◽

pp. e455

Author(s):

Mohammed Amine Bouras ◽

Boming Xia ◽

Adnan Omer Abuassba ◽

Huansheng Ning ◽

Qinghua Lu

Keyword(s):

Access Control ◽

Single Point ◽

Poor Performance ◽

Sharing Economy ◽

Privacy And Security ◽

Control Approach ◽

Blockchain Technology ◽

Control Schemes ◽

Common Goals ◽

Intrinsic Feature

Access control is a critical aspect for improving the privacy and security of IoT systems. A consortium is a public or private association or a group of two or more institutes, businesses, and companies that collaborate to achieve common goals or form a resource pool to enable the sharing economy aspect. However, most access control methods are based on centralized solutions, which may lead to problems like data leakage and single-point failure. Blockchain technology has its intrinsic feature of distribution, which can be used to tackle the centralized problem of traditional access control schemes. Nevertheless, blockchain itself comes with certain limitations like the lack of scalability and poor performance. To bridge the gap of these problems, here we present a decentralized capability-based access control architecture designed for IoT consortium networks named IoT-CCAC. A blockchain-based database is utilized in our solution for better performance since it exhibits favorable features of both blockchain and conventional databases. The performance of IoT-CCAC is evaluated to demonstrate the superiority of our proposed architecture. IoT-CCAC is a secure, salable, effective solution that meets the enterprise and business’s needs and adaptable for different IoT interoperability scenarios.

Download Full-text

Improvement of Privacy and Security in Hybrid Cloud with Attribute Group Based Access Control

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit19518 ◽

2019 ◽

pp. 57-61

Author(s):

Kayalvili S ◽

Sowmitha V

Keyword(s):

Cloud Computing ◽

Access Control ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Security Requirements ◽

Security And Privacy ◽

Data Outsourcing ◽

Privacy And Security ◽

Control Approach

Cloud computing enables users to accumulate their sensitive data into cloud service providers to achieve scalable services on-demand. Outstanding security requirements arising from this means of data storage and management include data security and privacy. Attribute-based Encryption (ABE) is an efficient encryption system with fine-grained access control for encrypting out-sourced data in cloud computing. Since data outsourcing systems require flexible access control approach Problems arises when sharing confidential corporate data in cloud computing. User-Identity needs to be managed globally and access policies can be defined by several authorities. Data is dual encrypted for more security and to maintain De-Centralization in Multi-Authority environment.

Download Full-text

Specification and Implementation of the Privacy Policy Following the Generalised Framework for Access Control- Approach

Lecture Notes in Computer Science - IT-Security and Privacy ◽

10.1007/3-540-45150-1_6 ◽

2001 ◽

pp. 201-257

Keyword(s):

Access Control ◽

Privacy Policy ◽

Control Approach ◽

Specification And Implementation

Download Full-text

An Access Control Approach of Multi_Security Domain for Web Service

Procedia Engineering ◽

10.1016/j.proeng.2011.08.633 ◽

2011 ◽

Vol 15 ◽

pp. 3376-3382 ◽

Cited By ~ 2

Author(s):

Song Guo ◽

Xiaoping Lai

Keyword(s):

Access Control ◽

Web Service ◽

Control Approach

Download Full-text

Language-based access control approach for component-based software applications

IET Software ◽

10.1049/iet-sen:20070026 ◽

2007 ◽

Vol 1 (5) ◽

pp. 206-216

Author(s):

R. Su ◽

M.R.V. Chaudron ◽

J.J. Lukkien

Keyword(s):

Access Control ◽

Control Approach ◽

Software Applications

Download Full-text

PriGuarder: A Privacy-Aware Access Control Approach Based on Attribute Fuzzy Grouping in Cloud Environments

IEEE Access ◽

10.1109/access.2017.2780763 ◽

2018 ◽

Vol 6 ◽

pp. 1882-1893 ◽

Cited By ~ 4

Author(s):

Li Lin ◽

Ting-Ting Liu ◽

Shuang Li ◽

Chathura M. Sarathchandra Magurawalage ◽

Shan-Shan Tu

Keyword(s):

Access Control ◽

Control Approach ◽

Cloud Environments

Download Full-text

Quality of service assessment of opportunistic spectrum access: a medium access control approach

IEEE Wireless Communications ◽

10.1109/mwc.2008.4653128 ◽

2008 ◽

Vol 15 (5) ◽

pp. 20-29 ◽

Cited By ~ 25

Author(s):

P. Pawelczak ◽

S. Pollin ◽

Hoi-Sheung So ◽

A. Bahai ◽

R. Prasad ◽

...

Keyword(s):

Quality Of Service ◽

Access Control ◽

Medium Access Control ◽

Opportunistic Spectrum Access ◽

Spectrum Access ◽

Medium Access ◽

Control Approach

Download Full-text

Rethinking Blockchain for Access Control in the Internet of Things

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.a3120.1011121 ◽

2021 ◽

Vol 11 (1) ◽

pp. 99-108

Author(s):

Poonam N. Railkar ◽

◽

Parikshit Mahalle ◽

Dr. Gitanjali Rahul Shinde ◽

◽

...

Keyword(s):

Access Control ◽

Trust Management ◽

Gap Analysis ◽

Control Mechanism ◽

Research Area ◽

Iot Security ◽

Control Approach ◽

Blockchain Technology ◽

Access Control Mechanism ◽

The Internet Of Things

IoT is a network of interconnected heterogeneous devices which sense, accumulate the data and forward the same to the cloud platform for analytical purposes. There are various IoT verticals in which huge research is going on. IoT security is the most challenging research area in which researchers are investing a huge number of efforts. The challenges in IoT security include access control, trust management, authentication, authorization, privacy, and secured device to device communication. To overcome these, this paper gives an overview of proposed trust based distributed access control approach in IoT. Some of the challenges and threats can be controlled by blockchain technology. Basically, blockchain is an open and distributed ledger of records that can be verified efficiently and stored permanently. This paper checks the feasibility study of the applicability of blockchain in the IoT ecosystem to apply access control mechanism and privacy-preserving policies. This paper discusses how access control and privacy can be addressed by blockchain without compromising security. This paper consists of rigorous gap analysis which is done on the top of comprehensive literature survey. The paper also addresses the challenges and issues which can be faced while applying access control mechanism using blockchain in the context of IoT.

Download Full-text

Authentication-based access control approach for enhancing security in pervasive computing environments

International Journal of Pervasive Computing and Communications ◽

10.1108/ijpcc-02-2021-0044 ◽

2021 ◽

Vol ahead-of-print (ahead-of-print) ◽

Author(s):

Gnaneshwari G.R. ◽

M.S. Hema ◽

S.C. Lingareddy

Keyword(s):

Access Control ◽

Pervasive Computing ◽

Service Provider ◽

Computing Environment ◽

Content Type ◽

Control Approach ◽

Security Issues ◽

Authentication Mechanism ◽

Computing Environments ◽

And Performance

Purpose Pervasive computing environment allows the users to access the services anywhere and anytime. Due to the dynamicity, mobility, security, heterogeneity, and openness have become a major challenging task in the Pervasive computing environment. To solve the security issues and to increase the communication reliability, an authentication-based access control approach is developed in this research to ensure the level of security in the Pervasive computing environment. Design/methodology/approach This paper aims to propose authentication-based access control approach performs the authentication mechanism using the hashing, encryption, and decryption function. The proposed approach effectively achieves the conditional traceability of user credentials to enhance security. Moreover, the performance of the proposed authentication-based access control approach is estimated using the experimental analysis, and performance improvement is proved using the evaluation metrics. It inherent the tradeoff between authentication and access control in the Pervasive computing environment. Here, the service provider requires authorization and authentication for the provision of service, whereas the end-users require unlinkability and untraceability for data transactions. Findings The proposed authentication-based access control obtained 0.76, 22.836 GB, and 3.35 sec for detection rate, memory, and time by considering password attack, and 22.772GB and 4.51 sec for memory and time by considering without attack scenario. Originality/value The communication between the user and the service provider is progressed using the user public key in such a way that the private key of the user can be generated through the encryption function.

Download Full-text

Knowledge sharing in virtual enterprises via an ontology-based access control approach

Computers in Industry ◽

10.1016/j.compind.2007.12.004 ◽

2008 ◽

Vol 59 (5) ◽

pp. 502-519 ◽

Cited By ~ 55

Author(s):

Tsung-Yi Chen

Keyword(s):

Access Control ◽

Knowledge Sharing ◽

Virtual Enterprises ◽

Control Approach

Download Full-text