Resilient Authentication and Authorization for the Internet of Things (IoT) Using Edge Computing
| العنوان: | Resilient Authentication and Authorization for the Internet of Things (IoT) Using Edge Computing |
|---|---|
| المؤلفون: | Eunsuk Kang, Hokeun Kim, David Broman, Edward A. Lee |
| المصدر: | ACM Transactions on Internet of Things. 1:1-27 |
| بيانات النشر: | Association for Computing Machinery (ACM), 2020. |
| سنة النشر: | 2020 |
| مصطلحات موضوعية: | Service (systems architecture), Computer Networks and Communications, Computer science, Denial-of-service attack, 02 engineering and technology, Computer security, computer.software_genre, 020204 information systems, 0202 electrical engineering, electronic engineering, information engineering, 10. No inequality, Edge computing, Building automation, Network architecture, Authentication, business.industry, Authorization, 020206 networking & telecommunications, 16. Peace & justice, Computer Science Applications, Hardware and Architecture, Key (cryptography), Enhanced Data Rates for GSM Evolution, business, computer, Software, Information Systems |
| الوصف: | An emerging type of network architecture called edge computing has the potential to improve the availability and resilience of IoT services under anomalous situations such as network failures or denial-of-service (DoS) attacks. However, relatively little has been explored on the problem of ensuring availability even when edge computers that provide key security services (e.g., authentication and authorization) become unavailable themselves. This article proposes a resilient authentication and authorization framework to enhance the availability of IoT services under DoS attacks or failures. The proposed approach leverages a technique called secure migration , which allows an IoT device to migrate to another trusted edge computer when its own local authorization service becomes unavailable. Specifically, we describe the design of a secure migration framework and its supporting mechanisms, including (1) automated migration policy construction and (2) protocols for preparing and executing the secure migration. We formalize secure migration policy construction as an integer linear programming (ILP) problem and show its effectiveness using a case study on smart buildings, where the proposed solution achieves significantly higher availability under simulated attacks on authorization services. |
| تدمد: | 2577-6207 2691-1914 |
| DOI: | 10.1145/3375837 |
| URL الوصول: | https://explore.openaire.eu/search/publication?articleId=doi_________::abdfd52553a8ef8289ac87b18361203f https://doi.org/10.1145/3375837 |
| Rights: | OPEN |
| رقم الانضمام: | edsair.doi...........abdfd52553a8ef8289ac87b18361203f |
| قاعدة البيانات: | OpenAIRE |
| تدمد: | 25776207 26911914 |
|---|---|
| DOI: | 10.1145/3375837 |