AoT: Authentication and Access Control for the Entire IoT Device Life-Cycle. Maia Neto, A., L., Souza, A., L., F., Cunha, I., Nogueira, M., Nunes, I., O., Cotta, L., Gentille, N., Loureiro, A., A., F., Aranha, D., F., Patil, H., K., & Oliveira, L., B. In Proceedings of the ACM Conference on Embedded Network Sensor Systems (SenSys), pages 1-15, 2016. ACM.
AoT: Authentication and Access Control for the Entire IoT Device Life-Cycle [link]Website  abstract   bibtex   
The consumer electronics industry is witnessing a surge in Internet of Things (IoT) devices, ranging from mundane artifacts to complex biosensors connected across disparate networks. As the demand for IoT devices grows, the need for stronger authentication and access control mechanisms is greater than ever. Legacy authentication and access control mechanisms do not meet the growing needs of IoT. In particular, there is a dire need for a holistic authentication mechanism throughout the IoT device life-cycle, namely from the manufacturing to the retirement of the device. As a plausible solution, we present Authentication of Things (AoT), a suite of protocols that incorporate authentication and access control during the entire IoT device life span. Primarily, AoT relies on Identity- and Attribute-Based Cryptography to cryptographically enforce Attribute-Based Access Control (ABAC). Additionally, AoT facilitates secure (in terms of stronger authentication) wireless interoperability of new and guest devices in a seamless manner. To validate our solution, we have developed AoT for Android smartphones like the LG G4 and evaluated all the cryptographic primitives over more constrained devices like the Intel Edison and the Arduino Due. This included the implementation of an Attribute-Based Signature (ABS) scheme. Our results indicate AoT ranges from highly efficient on resource-rich devices to affordable on resource-constrained IoT-like devices. Typically, an ABS generation takes around 27 ms on the LG G4, 282 ms on the Intel Edison, and 1.5 s on the Arduino Due.
@inProceedings{
 title = {AoT: Authentication and Access Control for the Entire IoT Device Life-Cycle},
 type = {inProceedings},
 year = {2016},
 identifiers = {[object Object]},
 keywords = {access-control,attribute-based,authentication,cs200,cs200reading,encryption,iot,iotsec,security,wireless},
 pages = {1-15},
 websites = {http://dx.doi.org/10.1145/2994551.2994555},
 publisher = {ACM},
 id = {51f61e00-f418-37b0-a174-3183ffa6e315},
 created = {2018-07-12T21:31:06.907Z},
 file_attached = {false},
 profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},
 group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},
 last_modified = {2018-07-12T21:31:06.907Z},
 read = {false},
 starred = {false},
 authored = {false},
 confirmed = {true},
 hidden = {false},
 citation_key = {maia-neto:aot},
 source_type = {inproceedings},
 private_publication = {false},
 abstract = {The consumer electronics industry is witnessing a surge in Internet of Things (IoT) devices, ranging from mundane artifacts to complex biosensors connected across disparate networks. As the demand for IoT devices grows, the need for stronger authentication and access control mechanisms is greater than ever. Legacy authentication and access control mechanisms do not meet the growing needs of IoT. In particular, there is a dire need for a holistic authentication mechanism throughout the IoT device life-cycle, namely from the manufacturing to the retirement of the device. As a plausible solution, we present Authentication of Things (AoT), a suite of protocols that incorporate authentication and access control during the entire IoT device life span. Primarily, AoT relies on Identity- and Attribute-Based Cryptography to cryptographically enforce Attribute-Based Access Control (ABAC). Additionally, AoT facilitates secure (in terms of stronger authentication) wireless interoperability of new and guest devices in a seamless manner. To validate our solution, we have developed AoT for Android smartphones like the LG G4 and evaluated all the cryptographic primitives over more constrained devices like the Intel Edison and the Arduino Due. This included the implementation of an Attribute-Based Signature (ABS) scheme. Our results indicate AoT ranges from highly efficient on resource-rich devices to affordable on resource-constrained IoT-like devices. Typically, an ABS generation takes around 27 ms on the LG G4, 282 ms on the Intel Edison, and 1.5 s on the Arduino Due.},
 bibtype = {inProceedings},
 author = {Maia Neto, Antonio L and Souza, Artur L F and Cunha, Italo and Nogueira, Michele and Nunes, Ivan O and Cotta, Leonardo and Gentille, Nicolas and Loureiro, Antonio A F and Aranha, Diego F and Patil, Harsh K and Oliveira, Leonardo B},
 booktitle = {Proceedings of the ACM Conference on Embedded Network Sensor Systems (SenSys)}
}
Downloads: 0