OCIoTBDS 2017 Abstracts

Short Papers
Paper Nr: 2

IoT Adaptive Security


Gary Wills and Robert Walters

Abstract: The Internet of Things (IoT) is becoming the next revolution of the Internet. It allows billions of devices to be connected and communicate with each other to share information that results in improving the quality of our daily lives. Although incorporating the IoT in the real world faces numerous challenges, the security and privacy are still the biggest issues to the successful implementation of IoT applications. Authentication and access control models are considered as the essential elements to address security and privacy challenges. It is important to establish a secure access control model between different IoT devices and services. This is because the unexpected leakage of information and unauthorized access to data could have a high impact in our lives. However, traditional access control approaches with static and rigid infrastructure cannot provide the required security levels for the IoT system. We discuss an adaptive risk-based access control model to determine access permissions dynamically. This model uses IoT real-time features to estimate the security risk associated with each access request and uses the estimated risk to make the access decision. We would also discuss some of the challenges generally encountered with IoT based systems and Tools for Building Safe and Secure Cyber-Physical Systems (CPS) in IoT