Please use this identifier to cite or link to this item: https://hdl.handle.net/20.500.11851/5730
Full metadata record
DC FieldValueLanguage
dc.contributor.authorBurakgazi, Bilgen M.-
dc.contributor.authorBıçakcı, Kemal-
dc.date.accessioned2021-09-11T15:19:47Z-
dc.date.available2021-09-11T15:19:47Z-
dc.date.issued2020en_US
dc.identifier.citation13th International Conference on Information Security and Cryptology, ISCTURKEY 2020, 3 December 2020 through 4 December 2020, , 166977en_US
dc.identifier.isbn9781665418638-
dc.identifier.urihttps://doi.org/10.1109/ISCTURKEY51113.2020.9307964-
dc.identifier.urihttps://hdl.handle.net/20.500.11851/5730-
dc.description.abstractInternet of Things (IoT) brings not only wide range of opportunities but also security and privacy concerns. Consisting of many connected devices used in a highly interactive way, one of the main security concerns in IoT is unauthorized access. Traditional access control models do not support dynamic and fine-grained access control policies. Attribute-Based Access Control (ABAC) model is usually considered the most satisfactory access control model for running IoT applications. In this paper, we propose to take into the user authentication matching score obtained from a biometric authentication system consideration during making access control decisions. We emphasize the need of fine-grained access control and suggest to create access control policies per functionality of the device instead of per device regarding to the least privilege principle of information security. We give full or partial permission to certain functionalities of the IoT devices based on the user's authentication matching score thus provide more fine-grained and powerful access control mechanism. We present an extended Attribute-Based Access Control model that includes the assurance level of user authentication in access control policies and partially or fully permit the request accordingly. © 2020 IEEE.en_US
dc.description.sponsorshipAselsan;Havelsan;Huawei;NETAS;TURKSATen_US
dc.language.isoenen_US
dc.publisherInstitute of Electrical and Electronics Engineers Inc.en_US
dc.relation.ispartof2020 International Conference on Information Security and Cryptology, ISCTURKEY 2020 - Proceedingsen_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.titleExtending Attribute-Based Access Control Model with Authentication Information for Internet of Thingsen_US
dc.typeConference Objecten_US
dc.departmentFaculties, Faculty of Engineering, Department of Computer Engineeringen_US
dc.departmentFakülteler, Mühendislik Fakültesi, Bilgisayar Mühendisliği Bölümütr_TR
dc.identifier.startpage48en_US
dc.identifier.endpage55en_US
dc.identifier.wosWOS:000676395800007en_US
dc.identifier.scopus2-s2.0-85101156307en_US
dc.institutionauthorBıçakcı, Kemal-
dc.identifier.doi10.1109/ISCTURKEY51113.2020.9307964-
dc.relation.publicationcategoryKonferans Öğesi - Uluslararası - Kurum Öğretim Elemanıen_US
dc.relation.conference13th International Conference on Information Security and Cryptology, ISCTURKEY 2020en_US
item.cerifentitytypePublications-
item.languageiso639-1en-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.openairetypeConference Object-
item.fulltextNo Fulltext-
item.grantfulltextnone-
crisitem.author.dept02.3. Department of Computer Engineering-
Appears in Collections:Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Show simple item record



CORE Recommender

WEB OF SCIENCETM
Citations

4
checked on Apr 13, 2024

Page view(s)

60
checked on Apr 15, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.