FEDER:Access Control Model in IoT

From UNamur InfoSec
Revision as of 15:19, 5 March 2017 by Rthavymo (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Objective

The main goal of this work is to define the access control model that can be used to express the access control policies for different access scenarios in IoTs system taking into account the privacy protection aspect since different types of sensors/devices are used in IoTs context (e.g. temperature sensor, movement sensor, CCTV, etc.) and some of which need privacy protection.

Access Control Requirements

In order to define the access control requirements, we need to consider different factors, such as legal issues, usage scenarios, deployment and usability. These factors are the primary keys to define the access control requirements based upon which the access control model is built. The detailed requirements can be found here: [[1]]

Existing Models and comparison against defined requirements

Slide10.png

Proposed Access Control Model

AC Model

AC model.png


Risk Assessment Model

Risk-assessement-model.png

Access Control Expression Language