IoT-CBDAC : context-based dynamic access control model using intuitive 5W1H for the internet of things
| 000 | 00000nam c2200205 c 4500 | |
| 001 | 000045867273 | |
| 005 | 20160407095247 | |
| 007 | ta | |
| 008 | 160106s2016 ulkad bmAC 000c eng | |
| 040 | ▼a 211009 ▼c 211009 ▼d 211009 | |
| 041 | 0 | ▼a eng ▼b kor |
| 085 | 0 | ▼a 0510 ▼2 KDCP |
| 090 | ▼a 0510 ▼b 6YD36 ▼c 299 | |
| 100 | 1 | ▼a 손지성 |
| 245 | 1 0 | ▼a IoT-CBDAC : ▼b context-based dynamic access control model using intuitive 5W1H for the internet of things / ▼d Jiseong Son |
| 260 | ▼a Seoul : ▼b Graduate School, Korea University, ▼c 2016 | |
| 300 | ▼a vii, 96장 : ▼b 천연색삽화, 도표 ; ▼c 26 cm | |
| 500 | ▼a 지도교수: 백두권 | |
| 500 | ▼a 부록: A. Class definition, B. Individuals definition | |
| 502 | 1 | ▼a 학위논문(박사)-- ▼b 고려대학교 대학원 : ▼c 컴퓨터·전파통신공학과, ▼d 2016. 2 |
| 504 | ▼a 참고문헌: 장 66-72 | |
| 530 | ▼a PDF 파일로도 이용가능; ▼c Requires PDF file reader(application/pdf) | |
| 653 | ▼a Access Control ▼a Ontology ▼a Internet of Things | |
| 776 | 0 | ▼t IoT-CBDAC: Context-based Dynamic Access Control Model using Intuitive 5W1H for the Internet of Things ▼w (DCOLL211009)000000065930 |
| 900 | 1 0 | ▼a Son, Ji-seong, ▼e 저 |
| 900 | 1 0 | ▼a 백두권, ▼e 지도교수 |
| 900 | 1 0 | ▼a Baik, Doo-kwon, ▼e 지도교수 |
| 945 | ▼a KLPA |
Electronic Information
| No. | Title | Service |
|---|---|---|
| 1 | IoT-CBDAC : context-based dynamic access control model using intuitive 5W1H for the internet of things (70회 열람) |
View PDF Abstract Table of Contents |
Holdings Information
| No. | Location | Call Number | Accession No. | Availability | Due Date | Make a Reservation | Service |
|---|---|---|---|---|---|---|---|
| No. 1 | Location Science & Engineering Library/Stacks(Thesis)/ | Call Number 0510 6YD36 299 | Accession No. 123052989 | Availability Available | Due Date | Make a Reservation | Service |
Contents information
Abstract
With the development of information technology, wireless communication, cloud computing, sensors, active research in big data, etc., everything of physical world is connected by the Internet. This new paradigm is called the Internet of Things (IoT). It's key to design and build that all electrical devices are connected, shared data and information, and provide suitable services for users in various domains through connected Internet. To realize information collection and sharing data, and to provide a variety of useful services, devices, systems, or platforms in IoT environment require solving various security issues. Especially, access control has to be performed dynamic for supporting suitable services to users because users’ access permission is affected by contexts. The context is information produced in the diverse sensors, and such information provides various services through an intersystem information exchange in various domains and interaction. Such context is volatile information strongly influenced by environmental elements, such as time and space. Therefore, this dissertation focuses on the dynamic access control for IoT environment based on context. For context-based access control in IoT, the access permission technique that uses context is being intensely investigated because of the ease with which various dynamic access permissions can be assigned in accordance with the various changes in context. In this dissertation, we propose a model for context-based dynamic access control that uses intuitive 5W1H for the IoT called the IoT-CBDAC. According to this thesis, access permission is assigned dynamically according to the change in context information such that even for a subject with the same role, access permission is defined differently depending on the context information and access condition. The proposed model not only authorizes access based on roles, which is the key concept of RBAC, but dynamic access control is also possible because access permission is assigned based on context information, access condition, and intended goal. As a result, this dissertation address to present a comprehensive approach of dynamic access controls management. Also, this dissertation guarantees privacy protection when processing the context information in various domains, and assigns access permission without any limitation to certain domains.
Table of Contents
ABSTRACT i 1. Introduction 1 1.1 Motivation and Purpose of the Research 1 1.2 Taxonomy 6 1.3 Organization of the Dissertation 7 2. Backgrounds and Related Works 9 2.1 Backgrounds 9 2.1.1 Discretionary Access Control (DAC) 9 2.1.2 Mandatory Access Control (MAC) 10 2.1.3 Role-based Access Control (RBAC) 10 2.2 Related Works 11 2.2.1 Purpose-based Access Control Models 11 2.2.2 Context-based Access Control Models 14 2.2.3 Ontology-based Context-Aware Models 17 3. Proposed Model 22 3.1 Dynamic Access Control Model 22 3.1.1 Ontological Context-Aware Model 25 3.1.2 Dynamic Access Control for Dynamic Access Permission 29 3.2 Mapping CA5W1HOnto and Access Condition 32 3.3 Dynamic Access Decision 35 4. Implementation and Experiment 39 4.1 Experiment 39 4.2 Implementation 42 5. Performance Evaluation 51 5.1 Quantitative Evaluation 51 5.1.1 Comparison between Domain Dependent Models and Our Approach for Adding New Domain 53 5.1.2 Comparison between Domain Dependent Models and Our Approach for Access Decision Time 55 5.1.3 Comparison between Context-based Models and Our Approach for Access Decision Time 57 5.2 Qualitative Evaluation 60 6. Conclusion and Future Works 63 6.1 Conclusion 63 6.2 Future Works 65 Bibliography 66 Appendix A. 73 Appendix B. 85 Abstaract (Korean) 95
