• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

基于将通信过程建模为资源的物联网环境访问控制机制

Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources.

作者信息

Cruz-Piris Luis, Rivera Diego, Marsa-Maestre Ivan, de la Hoz Enrique, Velasco Juan R

机构信息

Departamento de Automática, Escuela Politécnica Superior, Universidad de Alcalá, 28805 Alcalá de Henares, Madrid, Spain.

出版信息

Sensors (Basel). 2018 Mar 20;18(3):917. doi: 10.3390/s18030917.

DOI:10.3390/s18030917
PMID:29558406
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC5876929/
Abstract

Internet growth has generated new types of services where the use of sensors and actuators is especially remarkable. These services compose what is known as the Internet of Things (IoT). One of the biggest current challenges is obtaining a safe and easy access control scheme for the data managed in these services. We propose integrating IoT devices in an access control system designed for Web-based services by modelling certain IoT communication elements as resources. This would allow us to obtain a unified access control scheme between heterogeneous devices (IoT devices, Internet-based services, etc.). To achieve this, we have analysed the most relevant communication protocols for these kinds of environments and then we have proposed a methodology which allows the modelling of communication actions as resources. Then, we can protect these resources using access control mechanisms. The validation of our proposal has been carried out by selecting a communication protocol based on message exchange, specifically Message Queuing Telemetry Transport (MQTT). As an access control scheme, we have selected User-Managed Access (UMA), an existing Open Authorization (OAuth) 2.0 profile originally developed for the protection of Internet services. We have performed tests focused on validating the proposed solution in terms of the correctness of the access control system. Finally, we have evaluated the energy consumption overhead when using our proposal.

摘要

互联网的发展催生了新型服务,其中传感器和执行器的应用尤为显著。这些服务构成了所谓的物联网(IoT)。当前最大的挑战之一是为这些服务中管理的数据获取一种安全且便捷的访问控制方案。我们建议通过将某些物联网通信元素建模为资源,把物联网设备集成到一个为基于Web的服务设计的访问控制系统中。这将使我们能够在异构设备(物联网设备、基于互联网的服务等)之间获得统一的访问控制方案。为实现这一目标,我们分析了这类环境中最相关的通信协议,然后提出了一种方法,该方法允许将通信行为建模为资源。然后,我们可以使用访问控制机制来保护这些资源。我们通过选择一种基于消息交换的通信协议,具体来说是消息队列遥测传输(MQTT),对我们的提议进行了验证。作为一种访问控制方案,我们选择了用户管理访问(UMA),它是最初为保护互联网服务而开发的现有开放授权(OAuth)2.0配置文件。我们进行了测试,重点是在访问控制系统的正确性方面验证所提出的解决方案。最后,我们评估了使用我们的提议时的能源消耗开销。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/8355a791ce4c/sensors-18-00917-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/764cba1abcd3/sensors-18-00917-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/6c05005d3d2e/sensors-18-00917-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/8c64421e4fc3/sensors-18-00917-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/0d4bff6f8844/sensors-18-00917-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/8355a791ce4c/sensors-18-00917-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/764cba1abcd3/sensors-18-00917-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/6c05005d3d2e/sensors-18-00917-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/8c64421e4fc3/sensors-18-00917-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/0d4bff6f8844/sensors-18-00917-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/70af/5876929/8355a791ce4c/sensors-18-00917-g005.jpg

相似文献

1
Access Control Mechanism for IoT Environments Based on Modelling Communication Procedures as Resources.基于将通信过程建模为资源的物联网环境访问控制机制
Sensors (Basel). 2018 Mar 20;18(3):917. doi: 10.3390/s18030917.
2
Development of Virtual Resource Based IoT Proxy for Bridging Heterogeneous Web Services in IoT Networks.基于虚拟资源的物联网代理的开发,用于弥合物联网网络中异构 Web 服务之间的差距。
Sensors (Basel). 2018 May 26;18(6):1721. doi: 10.3390/s18061721.
3
An Efficient Key Management Technique for the Internet of Things.一种高效的物联网密钥管理技术。
Sensors (Basel). 2020 Apr 6;20(7):2049. doi: 10.3390/s20072049.
4
An Interoperable Access Control Framework for Diverse IoT Platforms Based on OAuth and Role.基于OAuth和角色的多物联网平台可互操作访问控制框架
Sensors (Basel). 2019 Apr 20;19(8):1884. doi: 10.3390/s19081884.
5
Preventing MQTT Vulnerabilities Using IoT-Enabled Intrusion Detection System.使用物联网入侵检测系统预防MQTT漏洞
Sensors (Basel). 2022 Jan 12;22(2):567. doi: 10.3390/s22020567.
6
Effective Feature Engineering Framework for Securing MQTT Protocol in IoT Environments.用于在物联网环境中保障MQTT协议安全的有效特征工程框架。
Sensors (Basel). 2024 Mar 10;24(6):1782. doi: 10.3390/s24061782.
7
A Multi-Protocol IoT Platform Based on Open-Source Frameworks.基于开源框架的多协议物联网平台。
Sensors (Basel). 2019 Sep 28;19(19):4217. doi: 10.3390/s19194217.
8
MUP: Simplifying Secure Over-The-Air Update with MQTT for Constrained IoT Devices.MUP:借助MQTT简化受限物联网设备的安全空中更新
Sensors (Basel). 2020 Dec 22;21(1):10. doi: 10.3390/s21010010.
9
MARAS: Mutual Authentication and Role-Based Authorization Scheme for Lightweight Internet of Things Applications.MARAS:用于轻量级物联网应用的相互认证和基于角色的授权方案
Sensors (Basel). 2023 Jun 17;23(12):5674. doi: 10.3390/s23125674.
10
Impact of CoAP and MQTT on NB-IoT System Performance.CoAP 和 MQTT 对 NB-IoT 系统性能的影响。
Sensors (Basel). 2018 Dec 20;19(1):7. doi: 10.3390/s19010007.

引用本文的文献

1
BEST-Blockchain-Enabled Secure and Trusted Public Emergency Services for Smart Cities Environment.基于区块链的智慧城市环境下安全可信的公共紧急服务
Sensors (Basel). 2022 Jul 31;22(15):5733. doi: 10.3390/s22155733.
2
Protocol-Based and Hybrid Access Control for the IoT: Approaches and Research Opportunities.物联网的基于协议和混合访问控制:方法与研究机遇
Sensors (Basel). 2021 Oct 14;21(20):6832. doi: 10.3390/s21206832.
3
HEAD Metamodel: Hierarchical, Extensible, Advanced, and Dynamic Access Control Metamodel for Dynamic and Heterogeneous Structures.

本文引用的文献

1
A CoAP-Based Network Access Authentication Service for Low-Power Wide Area Networks: LO-CoAP-EAP.一种用于低功耗广域网的基于受限应用协议(CoAP)的网络访问认证服务:LO-CoAP-EAP。
Sensors (Basel). 2017 Nov 17;17(11):2646. doi: 10.3390/s17112646.
2
Enabling Secure XMPP Communications in Federated IoT Clouds Through XEP 0027 and SAML/SASL SSO.通过XEP 0027和SAML/SASL单点登录在联邦物联网云中实现安全的XMPP通信。
Sensors (Basel). 2017 Feb 7;17(2):301. doi: 10.3390/s17020301.
HEAD元模型:用于动态异构结构的分层、可扩展、高级和动态访问控制元模型。
Sensors (Basel). 2021 Sep 29;21(19):6507. doi: 10.3390/s21196507.
4
Using Embedded Feature Selection and CNN for Classification on CCD-INID-V1-A New IoT Dataset.利用嵌入式特征选择和卷积神经网络对 CCD-INID-V1-新物联网数据集进行分类。
Sensors (Basel). 2021 Jul 15;21(14):4834. doi: 10.3390/s21144834.
5
Breaking Down the Compatibility Problem in Smart Homes: A Dynamically Updatable Gateway Platform.破解智能家居兼容性问题:一个动态可更新的网关平台。
Sensors (Basel). 2020 May 14;20(10):2783. doi: 10.3390/s20102783.