A Secure User-Centric Framework for Dynamic Service Provisioning in IoT Environments

Abstract

Internet of things (IoT) services are currently provisioned to users by having them specify their functional requirements like region of interest (ROI), and non-functional requirements such as quality of service (QoS). Selecting IoT services based on functionality is relatively mature. However, due to the abundance of functionally similar IoT services, it is challenging to select IoT services using QoS. Further, users' non-functional requirements maybe dynamic and vary over time. Although there are several QoS-driven web services selection methods, adopting such methods for IoT environments is not sufficient. This is because they are not designed to capture users' varying security preferences and are typically unable to explicitly tradeoff users' security and QoS preferences. This paper presents a comprehensive user-centric framework for secure and dynamic service provisioning in IoT environments, by allowing users to explicitly express their varying QoS and security preferences when selecting IoT services to support their applications. The novelty of the proposed user-centric framework lies in its ability to enable users personalize their security requirements for IoT services. To evaluate the feasibility of the proposed framework, an IoT case scenario is simulated.