Cryptology ePrint Archive: Report 2018/632

CHARIOT: Cloud-Assisted Access Control for the Internet of Things

Clementine Gritti and Melek Onen and Refik Molva

Abstract: The Internet of Things (IoT) technology has expanded widely across the world, promising new data management opportunities for industries, companies and individuals in different sectors, such as health services or transport logistics. This trend relies on connecting devices/things to collect, exchange and store data. The exponentially increasing number of IoT devices, their origin diversity, their limited capabilities in terms of resources, as well as the ever-increasing amount of data, raise new challenges for security and privacy protection, precluding traditional access control solutions to be integrated to this new environment. In this paper, we propose a reliable server-aided policy-based access control mechanism, named CHARIOT, that enables an IoT platform to verify credentials of different devices requesting access (read/write) to the data stored within it. CHARIOT permits IoT devices to authenticate themselves to the platform without compromising their privacy by using attribute-based signatures. Our solution also allows secure delegation of costly computational operations to a cloud server, hence relieving the workload at IoT devices' side.

Category / Keywords: public-key cryptography / access control, cloud computing, Internet of Things

Original Publication (with major differences): IEEE PST 2018

Date: received 26 Jun 2018

Contact author: clementine gritti at eurecom fr

Available format(s): PDF | BibTeX Citation

Note: full version of the paper

Version: 20180626:150218 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]