A Zero Trust and Attribute-Based Encryption Scheme for Dynamic Access Control in Power IoT Environments

Abstract

AbstractWith the rapid development of information technologies in the power industry, many power devices are connected to the Internet, thus expanding the exposure. Attackers could control some devices with weak security capabilities as compromised devices to steal sensitive data inside the power Internet of Things (IoT). Traditional access control schemes are suitable for ordinary devices, but they cannot provide enough data protection against compromised devices. In this paper, we propose a zero trust and attribute-based encryption scheme for dynamic access control in Power IoT environments. In order to protect the privacy information, we hide part of the access policy to ensure that the data owner verifies the attribute set of access entities without knowing the complete access policy structure. Meanwhile, we continuously monitor the network behavior of the access entities and calculate their trust value in real-time, which can avoid access entities with unauthorized attribute sets and abnormal network behavior to gain access permissions. The simulation results show that our scheme can increase the interception rate of malicious access entities.KeywordsZero trustAccess controlCompromised devicesPower IoTTrust evaluation