Fine-Grained Access Control with Attribute Based Cache Coherency for IoT with application to Healthcare

dc.contributor.advisor Manimaran Govindarasu
dc.contributor.author Tamilselvan, Piranava
dc.contributor.department Electrical and Computer Engineering
dc.date 2018-08-11T09:05:33.000
dc.date.accessioned 2020-06-30T03:05:17Z
dc.date.available 2020-06-30T03:05:17Z
dc.date.copyright Sun Jan 01 00:00:00 UTC 2017
dc.date.embargo 2001-01-01
dc.date.issued 2017-01-01
dc.description.abstract <p>The Internet of Things (IoT) is getting popular everyday around the world. Given the endless opportunities it promises to provide, IoT is adopted by various organizations belonging to diverse domains. However, IoT’s “access by anybody from anywhere” concept makes it prone to numerous security challenges. Although data security is studied at various levels of IoT architecture, breach of data security due to internal parties has not received as much attention as that caused by external parties. When an organization with people spread across multiple levels of hierarchies with multiple roles adopts IoT, it is not fair to provide uniform access of the data to everyone. Past research has extensively investigated various Access Control techniques like Role Based Access Control (RBAC), Identity Based Access Control (IBAC), Attribute Based Access Control (ABAC) and other variations to address the above issue. While ABAC meets the needs of the growing amount of subjects and objects in an IoT environment, when implemented as an encryption algorithm (ABE) it does not cater to the IoT RDBMS applications. Also, given the query processing over huge encrypted data-set on the Cloud and the distance between the Cloud and the end-user, latency issues are highly prevalent in IoT applications. Various Client side caching and Server side caching techniques have been proposed to meet the latency issues in a Client-Server environment. Client side caching is more appropriate for an IoT environment given the dynamic connections and the large volume of requests to the Cloud per unit time. However, an IoT Cloud has mixed critical data to every user and conventional Client side caching techniques do not exploit this property of IoT data.</p> <p>In this work, we develop (i) an Attribute Based Access Control (ABAC) mechanism for the IoT data on the Cloud in order to provide a fine-grained access control in an organization and (ii) an Attribute Based Cache Consistency (ABCC) technique that tailors Cache Invalidation according to the users’ attributes to cater to the latency as well as criticality needs of different users. We implement and study these models on a Healthcare application comprising of a million Electronic Health Record (EHR) Cloud and a variety of end-users within a hospital trying to access various fields of the EHR from their Smart devices (such as Android phones). ABAC is evaluated with and without ABCC and we shall observe that ABAC with ABCC provides a lower average latency but a higher staleness percentage than the one without ABCC. However, the staleness percentage is negligible since we can see that much of the data that contributes to the staleness percentage are the non-critical data, thus making ABAC with ABCC an efficient approach for IoT based Cloud applications.</p>
dc.format.mimetype application/pdf
dc.identifier archive/lib.dr.iastate.edu/etd/15627/
dc.identifier.articleid 6634
dc.identifier.contextkey 11058355
dc.identifier.doi https://doi.org/10.31274/etd-180810-5241
dc.identifier.s3bucket isulib-bepress-aws-west
dc.identifier.submissionpath etd/15627
dc.identifier.uri https://dr.lib.iastate.edu/handle/20.500.12876/29810
dc.language.iso en
dc.source.bitstream archive/lib.dr.iastate.edu/etd/15627/Tamilselvan_iastate_0097M_16600.pdf|||Fri Jan 14 20:44:08 UTC 2022
dc.subject.disciplines Computer Engineering
dc.subject.keywords access control
dc.subject.keywords cache
dc.subject.keywords encryption
dc.subject.keywords Internet of Things
dc.subject.keywords latency
dc.subject.keywords security
dc.title Fine-Grained Access Control with Attribute Based Cache Coherency for IoT with application to Healthcare
dc.type article
dc.type.genre thesis
dspace.entity.type Publication
relation.isOrgUnitOfPublication a75a044c-d11e-44cd-af4f-dab1d83339ff
thesis.degree.discipline Computer Engineering
thesis.degree.level thesis
thesis.degree.name Master of Science
File
Original bundle
Now showing 1 - 1 of 1
Name:
Tamilselvan_iastate_0097M_16600.pdf
Size:
898.06 KB
Format:
Adobe Portable Document Format
Description: