“On the design of a decentralized and multi-authority access control scheme in federated and cloud-assisted Cyber-Physical Systems”
While enabling brand new services and opportunities, the federation of vertical Internet of Things platforms presents new challenges in terms of secure and controlled access to heterogeneous resources, especially when authorization permissions must be regulated by multiple decentralized authorities. The work presented herein designs, develops, and experimentally validates a flexible and effective Attribute-Based Access Control framework, properly devised to operate in a federated and cloud-assisted Cyber-Physical System. Our main novelty stems in the original way we turn a policy-based encryption scheme, customarily used for accessing data, into a Cyber-Physical resource access control protocol. The proposed design approach is able to address several security issues characterizing the emerging use cases in this context, including the decoupling between authentication and authorization, fine-grained, offline, and time-limited authorization, protection against collusion attacks, access rights revocation, and user privacy. A security analysis and a performance evaluation executed through experimental tests clearly demonstrate the viability of the proposed approach in realistic cloud-assisted Cyber-Physical Systems, as well as its ability to overcome the lacks affecting competitive approaches without introducing huge communication and computational requirements.
(PDF) Available from: IEEE internet of Things Journal
“Blockchain as a Service: securing bartering functionalities in the H2020 symbIoTe framework”
Blockchain is emerging as a promising technology able to support transparent, secure, and immutable transactions traceability in decentralized networks. Its usage in many application domains, including the Internet of Things, is gaining the attention of even more researchers and industries worldwide. In line with current research interests, partners involved in the H2020 symbIoTe project (that are, in alphabetical order: ATOS, CNIT, PSNC, and UNIVIE) wrote a scientific letter where they describe how to implement bartering functionalities across a federation of Internet of Things platforms by means of a novel methodology that properly integrates and takes advantages from the Blockchain technology. Even if the proposed approach is general, its main facets are illustrated through a fictional use case envisaging the provisioning of Intelligent Transportation System and air pollution services in a Smart City. The work will be published in an emerging journal focusing on Internet-related technlogies (ref: Pietro Tedeschi, Jose Antonio Sanchez Murillo, Nemanja Ignjatov, Michal Pilc, Kaspar Lebloch, and Gennaro Boggia. Blockchain as a Service: securing bartering functionalities in the H2020 symbIoTe framework. Internet Technology Letters, Wiley, August 2018. doi: 10.1002/itl2.72).
(PDF) Available from: Wiley Online Library