%0 Conference Proceedings
%T A Generic Lightweight and Scalable Access Control Framework for IoT Gateways
%+ Universität Passau [Passau]
%A Parra Rodriguez, Juan, D.
%Z Part 6: Internet of Things
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 12th IFIP International Conference on Information Security Theory and Practice (WISTP)
%C Brussels, Belgium
%Y Olivier Blazy
%Y Chan Yeob Yeun
%I Springer International Publishing
%3 Information Security Theory and Practice
%V LNCS-11469
%P 207-222
%8 2018-12-10
%D 2018
%R 10.1007/978-3-030-20074-9_15
%K Access control
%K IoT gateway
%K Identity management
%Z Computer Science [cs]Conference papers
%X Gateways prevail in IoT (Internet of Things) set-ups for connectivity, privacy, and other reasons; however, there has not been a generic and open-source framework offering authentication, identity management, policy administration and policy evaluation as a service for such a scenario. Meanwhile, cloud-based security solutions are available, but they use too much memory and CPU to be deployed in low-cost hardware typically used for IoT gateways such as the Raspberry Pi.In our work, we identified critical requirements for a generic security framework that could be deployed to low-cost hardware used for IoT gateways. From this point on, we implemented the security framework, and modified a Content Management System (CMS) to rely on the framework for authentication and policy evaluations.We evaluated our component’s runtime performance and computational resource consumption in comparison to a popular attribute-based security framework written in Java. We measured the CPU, memory, and network usage for each security framework, their databases, and the CMS across three different hardware platforms. To ensure our results are not biased towards a particular hardware set-up, we chose hardware with two different processor architectures, different capabilities and vendors. Our results indicate that our framework not only requires less time to complete requests but also makes less intensive use of the processor and the memory, i.e., the most critical capabilities for IoT gateways today.
%G English
%Z TC 11
%Z WG 11.2
%2 https://hal.science/hal-02294606/document
%2 https://hal.science/hal-02294606/file/484602_1_En_15_Chapter.pdf
%L hal-02294606
%U https://hal.science/hal-02294606
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-TC11
%~ IFIP-WISTP
%~ IFIP-WG11-2
%~ IFIP-LNCS-11469