Abstract
Smart cities require new access control models for Internet of Things (IoT) devices that preserve user privacy while guaranteeing scalability and efficiency. Researchers believe that anonymous access can protect the private information even if the private information is not stored in authorization organization. Many attribute-based access control (ABAC) models that support anonymous access expose the attributes of the subject to the authorization organization during the authorization process, which allows the authorization organization to obtain the attributes of the subject and infer the identity of the subject. The ABAC with anonymous access proposed in this paper called ABSAC strengthens the identity-less of ABAC by combining homomorphic attribute-based signatures (HABSs) which does not send the subject attributes to the authorization organization, reducing the risk of subject identity re-identification. It is a secure anonymous access framework. Tests show that the performance of ABSAC implementation is similar to ABAC’s performance.
Highlights
Smart cities will involve millions of autonomous smart objects around us, monitoring, collecting, and sharing data without us many times being aware of it [1]
We propose an Attribute-based access control (ABAC) model that supports anonymous access called ABSAC
homomorphic attribute-based signatures (HABSs) is an anonymous certification scheme based on the attribute-based signatures (ABSs). e ABS is designed for the user to sign a message with fine-grained control over identifying information, and it does not support the properties required for anonymous certification [23]
Summary
Smart cities will involve millions of autonomous smart objects around us, monitoring, collecting, and sharing data without us many times being aware of it [1]. E methods mainly use attributes to encrypt objects to support anonymous authorization in the access control model. We propose an ABAC model that supports anonymous access called ABSAC. ABSAC does not use unique certificates and is friendly for all types of objects It inherits the features of fine-grained access control, flexible policy, and unlimited object type of ABAC. (1) is paper proposes an ABAC framework that supports anonymous access and fine-grained control of attributes by subjects. To the best of our knowledge, this paper is the first to propose an ABAC model supporting anonymous authorization by extending the authorization framework of the ABAC This model solves the problems of object type restriction and authorization based on a unique identifier. This model solves the problems of object type restriction and authorization based on a unique identifier. is paper continues Zhang’s work [15]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
