Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems
This article investigates access control in cyber-physical systems, making a decision to permit or deny a user’s request for access operations on a system. Access operations in cyber-physical system result in diverse impacts on human beings and are perceived with different importance. Say, controlli...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2017-12-01
|
| Series: | International Journal of Distributed Sensor Networks |
| Online Access: | https://doi.org/10.1177/1550147717748908 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850222431093915648 |
|---|---|
| author | Eun-Kyu Lee Jae-Han Lim Jibum Kim |
| author_facet | Eun-Kyu Lee Jae-Han Lim Jibum Kim |
| author_sort | Eun-Kyu Lee |
| collection | DOAJ |
| description | This article investigates access control in cyber-physical systems, making a decision to permit or deny a user’s request for access operations on a system. Access operations in cyber-physical system result in diverse impacts on human beings and are perceived with different importance. Say, controlling a nuclear plant and reading data from it must be given different priorities. Access requests for these operations must be authorized distinctively with different protection levels, named prioritization issue. Existing solutions, however, do not either satisfy the prioritization requirement efficiently or work well in cyber-physical system environment. To solve the prioritization problem, we propose a new access control mechanism, named multi-factor access control, that employs a multi-factoring technique. In multi-factor access control, a user is granted multiple secret keys (i.e. factors) from independent authorities. When accessing a highly prioritized object, the user must present more than two factors, each of which is issued from different authorities. This decreases the probability that it presents false evidence of qualification, increasing protection level. To demonstrate the feasibility, we implement the proposed scheme and apply it to our smart building testbed. Throughout real-world experiments, we evaluate the performance of computation cost and illustrate automated, prioritized smart building controls. |
| format | Article |
| id | doaj-art-6edabc319db242f395347bbaf986e8f3 |
| institution | OA Journals |
| issn | 1550-1477 |
| language | English |
| publishDate | 2017-12-01 |
| publisher | Wiley |
| record_format | Article |
| series | International Journal of Distributed Sensor Networks |
| spelling | doaj-art-6edabc319db242f395347bbaf986e8f32025-08-20T02:06:20ZengWileyInternational Journal of Distributed Sensor Networks1550-14772017-12-011310.1177/1550147717748908Prioritized access control enabling weighted, fine-grained protection in cyber-physical systemsEun-Kyu Lee0Jae-Han Lim1Jibum Kim2Incheon National University, Incheon, KoreaKwangwoon University, Seoul, KoreaIncheon National University, Incheon, KoreaThis article investigates access control in cyber-physical systems, making a decision to permit or deny a user’s request for access operations on a system. Access operations in cyber-physical system result in diverse impacts on human beings and are perceived with different importance. Say, controlling a nuclear plant and reading data from it must be given different priorities. Access requests for these operations must be authorized distinctively with different protection levels, named prioritization issue. Existing solutions, however, do not either satisfy the prioritization requirement efficiently or work well in cyber-physical system environment. To solve the prioritization problem, we propose a new access control mechanism, named multi-factor access control, that employs a multi-factoring technique. In multi-factor access control, a user is granted multiple secret keys (i.e. factors) from independent authorities. When accessing a highly prioritized object, the user must present more than two factors, each of which is issued from different authorities. This decreases the probability that it presents false evidence of qualification, increasing protection level. To demonstrate the feasibility, we implement the proposed scheme and apply it to our smart building testbed. Throughout real-world experiments, we evaluate the performance of computation cost and illustrate automated, prioritized smart building controls.https://doi.org/10.1177/1550147717748908 |
| spellingShingle | Eun-Kyu Lee Jae-Han Lim Jibum Kim Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems International Journal of Distributed Sensor Networks |
| title | Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems |
| title_full | Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems |
| title_fullStr | Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems |
| title_full_unstemmed | Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems |
| title_short | Prioritized access control enabling weighted, fine-grained protection in cyber-physical systems |
| title_sort | prioritized access control enabling weighted fine grained protection in cyber physical systems |
| url | https://doi.org/10.1177/1550147717748908 |
| work_keys_str_mv | AT eunkyulee prioritizedaccesscontrolenablingweightedfinegrainedprotectionincyberphysicalsystems AT jaehanlim prioritizedaccesscontrolenablingweightedfinegrainedprotectionincyberphysicalsystems AT jibumkim prioritizedaccesscontrolenablingweightedfinegrainedprotectionincyberphysicalsystems |