Secure capability-based access control in the M2M local cloud platform

Bayu Anggorojati, Neeli Rashmi Prasad, Ramjee Prasad

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Citations (Scopus)

Abstract

Protection and access control to resources plays a critical role in a distributed computing system like Machine-to-Machine (M2M) and cloud platform. The M2M local cloud platform considered in this paper, consists of multiple distributed M2M gateways that form a local cloud - presenting a unique challenge to the existing access control systems. The most prominent access control systems, such as ACL and RBAC, lack in scalability and flexibility to manage access from users or entity that belong to different authorization domains, and thus unsuitable for the presented platform. The access control approach based on API keys and OAuth that is used by the existing M2M Cloud platform, fails to provide fine grained and flexible access right delegation at the same time when both methods are used together. The proposed approach is built upon capability-based access control that has been specifically designed to provide flexible, yet restricted, access rights delegation. A number of use cases are provided to show the usage of capability creation, delegation, and access provision, particularly in the way application accesses services provided by the platform.

Original languageEnglish
Title of host publication2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781479946266
DOIs
Publication statusPublished - 1 Jan 2014
Event2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit - Aalborg, Denmark
Duration: 11 May 201414 May 2014

Publication series

Name2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit

Conference

Conference2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit
CountryDenmark
CityAalborg
Period11/05/1414/05/14

Keywords

  • access control
  • capability
  • cloud
  • delegation
  • M2M
  • security

Fingerprint Dive into the research topics of 'Secure capability-based access control in the M2M local cloud platform'. Together they form a unique fingerprint.

  • Cite this

    Anggorojati, B., Prasad, N. R., & Prasad, R. (2014). Secure capability-based access control in the M2M local cloud platform. In 2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit [6934469] (2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace and Electronic Systems, VITAE 2014 - Co-located with Global Wireless Summit). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/VITAE.2014.6934469