Paper 2018/632

CHARIOT: Cloud-Assisted Access Control for the Internet of Things

Clementine Gritti, Melek Onen, and Refik Molva

Abstract

The Internet of Things (IoT) technology has expanded widely across the world, promising new data management opportunities for industries, companies and individuals in different sectors, such as health services or transport logistics. This trend relies on connecting devices/things to collect, exchange and store data. The exponentially increasing number of IoT devices, their origin diversity, their limited capabilities in terms of resources, as well as the ever-increasing amount of data, raise new challenges for security and privacy protection, precluding traditional access control solutions to be integrated to this new environment. In this paper, we propose a reliable server-aided policy-based access control mechanism, named CHARIOT, that enables an IoT platform to verify credentials of different devices requesting access (read/write) to the data stored within it. CHARIOT permits IoT devices to authenticate themselves to the platform without compromising their privacy by using attribute-based signatures. Our solution also allows secure delegation of costly computational operations to a cloud server, hence relieving the workload at IoT devices' side.

Note: full version of the paper

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Major revision. IEEE PST 2018
Keywords
access controlcloud computingInternet of Things
Contact author(s)
clementine gritti @ eurecom fr
History
2018-06-26: received
Short URL
https://ia.cr/2018/632
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2018/632,
      author = {Clementine Gritti and Melek Onen and Refik Molva},
      title = {CHARIOT: Cloud-Assisted Access Control for the Internet of Things},
      howpublished = {Cryptology ePrint Archive, Paper 2018/632},
      year = {2018},
      note = {\url{https://eprint.iacr.org/2018/632}},
      url = {https://eprint.iacr.org/2018/632}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.