Fang Liming, Li Minghui, Zhou Lu, Zhang Hanyi, Ge Chunpeng
College of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, No. 29 Yudao Street, Nanjing 210016, China.
Key Laboratory of Computer Network Technology of Jiangsu Province, Nanjing 210096, China.
Sensors (Basel). 2019 May 7;19(9):2109. doi: 10.3390/s19092109.
A smart watch is a kind of emerging wearable device in the Internet of Things. The security and privacy problems are the main obstacles that hinder the wide deployment of smart watches. Existing security mechanisms do not achieve a balance between the privacy-preserving and data access control. In this paper, we propose a fine-grained privacy-preserving access control architecture for smart watches (FPAS). In FPAS, we leverage the identity-based authentication scheme to protect the devices from malicious connection and policy-based access control for data privacy preservation. The core policy of FPAS is two-fold: (1) utilizing a homomorphic and re-encrypted scheme to ensure that the ciphertext information can be correctly calculated; (2) dividing the data requester by different attributes to avoid unauthorized access. We present a concrete scheme based on the above prototype and analyze the security of the FPAS. The performance and evaluation demonstrate that the FPAS scheme is efficient, practical, and extensible.
智能手表是物联网中一种新兴的可穿戴设备。安全和隐私问题是阻碍智能手表广泛部署的主要障碍。现有的安全机制未能在隐私保护和数据访问控制之间实现平衡。在本文中,我们提出了一种用于智能手表的细粒度隐私保护访问控制架构(FPAS)。在FPAS中,我们利用基于身份的认证方案来保护设备免受恶意连接,并利用基于策略的访问控制来保护数据隐私。FPAS的核心策略有两个方面:(1)利用同态和重新加密方案确保密文信息能够被正确计算;(2)根据不同属性对数据请求者进行划分以避免未经授权的访问。我们基于上述原型提出了一个具体方案,并分析了FPAS的安全性。性能和评估表明,FPAS方案是高效、实用且可扩展的。
