Towards Finer-Grained Access Control for Globally Accessible IoT
Video
Team Information
Team Members
Luoyao Hao, PhD Student, Department of Computer Science, Columbia Engineering
Andrea Huang, Undergraduate Student in Computer Science, Columbia Engineering
Vibhas Naik, MS Student in Computer Science, Columbia Engineering
Olaedo Okoroafor, Undergraduate Student in Computer Science, Columbia Engineering
Faculty Advisor: Henning Schulzrinne, Julian Clarence Levi Professor of Mathematical Methods and Computer Science; and Professor of Electrical Engineering, Columbia Engineering
Abstract
As IoT grows rapidly towards an interactive ecosystem encompassing massive devices from multiple administrative domains, enforcing perfect access control mechanisms faces significant challenges given the limited support of devices and various access privileges needs of users. In this work, we investigate access control mechanisms for globally accessible IoT devices. We compare different approaches and propose a directory-assisted attribute-based access control mechanism to manage access across multiple administrative domains. Specifically, we develop a global directory system to store the metadata of IoT devices and enforce access policies based on a variety of attributes describing subjects, objects, contexts, and actions. Attributes and data can be efficiently retrieved from multiple distributed sources in a federated manner. The proposed framework also provides an additional layer of trust by decoupling access to metadata from access to devices.
Contact this Team
Team Contact: Luoyao Hao (use form to send email)