Institut for Forretningsudvikling og Teknologi

Secure capability-based access control in the M2M local cloud platform

Publikation: Bidrag til bog/antologi/rapport/proceedingKonferencebidrag i proceedingsForskningpeer review

Protection and access control to resources plays a critical role in a distributed computing system like Machine-to-Machine (M2M) and cloud platform. The M2M local cloud platform considered in this paper, consists of multiple distributed M2M gateways that form a local cloud - presenting a unique challenge to the existing access control systems. The most prominent access control systems, such as ACL and RBAC, lack in scalability and flexibility to manage access from users or entity that belong to different authorization domains, and thus unsuitable for the presented platform. The access control approach based on API keys and OAuth that is used by the existing M2M Cloud platform, fails to provide fine grained and flexible access right delegation at the same time when both methods are used together. The proposed approach is built upon capability-based access control that has been specifically designed to provide flexible, yet restricted, access rights delegation. A number of use cases are provided to show the usage of capability creation, delegation, and access provision, particularly in the way application accesses services provided by the platform.

TitelWireless Communications, Vehicular Technology, Information Theory and Aerospace & Electronic Systems (VITAE), 2014 4th International Conference on
Antal sider5
ForlagIEEE Signal Processing Society
Udgivelsesår1 jan. 2014
ISBN (trykt)9781479946266
StatusUdgivet - 1 jan. 2014
Eksternt udgivetJa
BegivenhedWireless VITAE2014 - Aalborg, Danmark
Varighed: 11 maj 201414 maj 2014


KonferenceWireless VITAE2014

Se relationer på Aarhus Universitet Citationsformater

ID: 171390015