TY - GEN
T1 - Securing Smart Home IoT Systems with Attribute-Based Access Control
AU - Goyal, Gaurav
AU - Liu, Peng
AU - Sural, Shamik
N1 - Publisher Copyright:
© 2022 ACM.
PY - 2022/4/18
Y1 - 2022/4/18
N2 - Over the last few years, there has been an increased proliferation of IoT systems for smart homes, enabling owners to remotely manage a variety of devices and gadgets installed on their properties. This growth was made possible due to several innovative contributions from the industry in device & sensor technology, efficient networking protocols, as well as extensive deployment of cloud infrastructure, and the development of user-friendly smartphone applications. However, the security of such systems, especially controlled access to the devices and their functionality, is still lagging. There were some recent attempts to develop access control methods for smart home IoTs. While the solutions appear to be interesting, they either ignore the practical issues faced during real-world deployment in IoT systems or do not support fine-grained access control as required by such applications. In this paper, we show how the security of smart home IoT systems can be strengthened through the use of attribute-based access control, which has been considered due to its several distinct advantages including the ability to specify fine-grained security policies and consideration of environmental conditions for making access decisions. A prototype implementation of the proposed framework has been done in the SmartThings IoT platform. An extensive set of experiments show that the approach is quite promising.
AB - Over the last few years, there has been an increased proliferation of IoT systems for smart homes, enabling owners to remotely manage a variety of devices and gadgets installed on their properties. This growth was made possible due to several innovative contributions from the industry in device & sensor technology, efficient networking protocols, as well as extensive deployment of cloud infrastructure, and the development of user-friendly smartphone applications. However, the security of such systems, especially controlled access to the devices and their functionality, is still lagging. There were some recent attempts to develop access control methods for smart home IoTs. While the solutions appear to be interesting, they either ignore the practical issues faced during real-world deployment in IoT systems or do not support fine-grained access control as required by such applications. In this paper, we show how the security of smart home IoT systems can be strengthened through the use of attribute-based access control, which has been considered due to its several distinct advantages including the ability to specify fine-grained security policies and consideration of environmental conditions for making access decisions. A prototype implementation of the proposed framework has been done in the SmartThings IoT platform. An extensive set of experiments show that the approach is quite promising.
UR - http://www.scopus.com/inward/record.url?scp=85129864888&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85129864888&partnerID=8YFLogxK
U2 - 10.1145/3510547.3517920
DO - 10.1145/3510547.3517920
M3 - Conference contribution
AN - SCOPUS:85129864888
T3 - SaT-CPS 2022 - Proceedings of the 2022 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems
SP - 37
EP - 46
BT - SaT-CPS 2022 - Proceedings of the 2022 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems
PB - Association for Computing Machinery, Inc
T2 - 2nd ACM Workshop on Secure and Trustworthy Cyber-Physical Systems, SaT-CPS 2022
Y2 - 27 April 2022
ER -