Towards Finer-Grained Access Control for Globally Accessible IoT

Video

Team Information

Team Members

• Luoyao Hao, PhD Student, Department of Computer Science, Columbia Engineering

• Andrea Huang, Undergraduate Student in Computer Science, Columbia Engineering

• Vibhas Naik, MS Student in Computer Science, Columbia Engineering

• Olaedo Okoroafor, Undergraduate Student in Computer Science, Columbia Engineering

• Faculty Advisor: Henning Schulzrinne, Julian Clarence Levi Professor of Mathematical Methods and Computer Science; and Professor of Electrical Engineering, Columbia Engineering

Abstract

As IoT grows rapidly towards an interactive ecosystem encompassing massive devices from multiple administrative domains, enforcing perfect access control mechanisms faces significant challenges given the limited support of devices and various access privileges needs of users. In this work, we investigate access control mechanisms for globally accessible IoT devices. We compare different approaches and propose a directory-assisted attribute-based access control mechanism to manage access across multiple administrative domains. Specifically, we develop a global directory system to store the metadata of IoT devices and enforce access policies based on a variety of attributes describing subjects, objects, contexts, and actions. Attributes and data can be efficiently retrieved from multiple distributed sources in a federated manner. The proposed framework also provides an additional layer of trust by decoupling access to metadata from access to devices.  

Contact this Team

Team Contact: Luoyao Hao (use form to send email)