Please use this identifier to cite or link to this item: https://hdl.handle.net/20.500.11851/10326
Full metadata record
DC FieldValueLanguage
dc.contributor.authorBurakgazi Bilgen, Melike-
dc.contributor.authorAbul, Osman-
dc.contributor.authorBıçakçı, Kemal-
dc.date.accessioned2023-04-16T10:00:17Z-
dc.date.available2023-04-16T10:00:17Z-
dc.date.issued2023-
dc.identifier.issn1615-5262-
dc.identifier.issn1615-5270-
dc.identifier.urihttps://doi.org/10.1007/s10207-022-00639-x-
dc.identifier.urihttps://hdl.handle.net/20.500.11851/10326-
dc.description.abstractSmart home technologies constantly bring significant convenience to our daily lives. Unfortunately, increased security risks accompany this convenience. There can be severe consequences when unauthorized or malicious users gain access to smart home devices. Therefore, dependable and comprehensive access control models are needed to address the security concerns. To this end, the attribute-based access control (ABAC) model is usually considered the most satisfactory access control model for running IoT applications. However, the uncertainty left with the authentication stage should be carried to the authorization policy specification. In this work, we extend the ABAC model by carrying the assurance level of user authentication obtained from biometric authentication systems for authorization. The extended ABAC model quantifies how far the authentication matching score is from the predefined threshold. This quantification serves as a regular attribute like others to define authorization policies. The novelty in this quantification is that it consults false matching rate and hence can easily normalize across wide range of biometric authentication devices and algorithms. As a result, the resulting access control policies are concise and easy to comprehend. Moreover, our model is fine-grained in that different access policies can be specified for each smart device functionality. This work also shows, through case studies, that the extended ABAC model is feasible and implementable in XACML language.en_US
dc.language.isoenen_US
dc.publisherSpringeren_US
dc.relation.ispartofInternational Journal of Information Securityen_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.subjectAccess controlen_US
dc.subjectAttribute-based access controlen_US
dc.subjectInternet of Thingsen_US
dc.subjectFalse matching rateen_US
dc.subjectSmart home securityen_US
dc.subjectInterneten_US
dc.subjectThingsen_US
dc.titleAuthentication-Enabled Attribute-Based Access Control for Smart Homesen_US
dc.typeArticleen_US
dc.departmentTOBB ETÜen_US
dc.identifier.volume22en_US
dc.identifier.issue2en_US
dc.identifier.startpage479en_US
dc.identifier.endpage495en_US
dc.identifier.wosWOS:000899734700001en_US
dc.identifier.scopus2-s2.0-85144146759en_US
dc.institutionauthor-
dc.identifier.doi10.1007/s10207-022-00639-x-
dc.authorscopusid57222052217-
dc.authorscopusid6602597612-
dc.authorscopusid6603355557-
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.identifier.scopusqualityQ1-
item.openairetypeArticle-
item.languageiso639-1en-
item.grantfulltextnone-
item.fulltextNo Fulltext-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
crisitem.author.dept02.3. Department of Computer Engineering-
Appears in Collections:Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Show simple item record



CORE Recommender

WEB OF SCIENCETM
Citations

1
checked on Oct 5, 2024

Page view(s)

108
checked on Dec 16, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.