ETD system

Electronic theses and dissertations repository


Tesi etd-02242020-100041

Thesis type
Tesi di dottorato di ricerca
Usage Control in the Internet of Everything
Settore scientifico disciplinare
Corso di studi
tutor Dott. Martinelli, Fabio
correlatore Dott. Saracino, Andrea
Parole chiave
  • usage control
  • access control
  • internet of things
  • internet of everything
  • protocol security
Data inizio appello
Riassunto analitico
The Internet of Things (IoT) is a world-wide network of heterogeneous interconnected objects, uniquely addressable, which are based on standard communication protocols and can interact with each other in order to share information based on communication protocol. Moreover, IoT is also one of the technological factors that enable the Internet of Everything (IoE) which includes not only Things, but also People, Data and Processes.
Security of IoT and IoE is a major aspect nowadays. The communication protocols that are used on this area lack of mechanisms that enforce policies continuously and control the access to the resources. In addition to the previous, the difference of the communication protocols in terms of architecture and characteristics has the effect that information sharing is difficult to be controlled.
Thus, there is the challenge of enhancing the security features of IoT protocols with a single mechanism. For this reason, we present a distributed Usage Control (UCON) model. UCON enhances Attribute Based Access Control (ABAC) models in two novel aspects: continuity of control and mutability of attributes. In order to demonstrate the viability of our approach, we present how UCON can be added on the most common protocols, how we can enhance the interoperability of UCON for IoE services, and finally we present the hierarchical UCON accompanied by policy simplification methods.