On design of a fine-grained access control architecture for securing iot-enabled smart healthcare systems

Shantanu Pal, Michael Hitchens, Vijay Varadharajan, Tahiry Rabehaja

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

7 Citations (Scopus)

Abstract

The Internet of Things (IoT) is facilitating the development of novel and cost-effective applications that promise to deliver efficient and improved medical facilities to patients and health organisations. This includes the use of smart ‘things’ as medical sensors attached to patients to deliver real-time data. However, the security of patient data is an ever-present concern in the healthcare arena. In the wider deployment of IoT-enabled smart healthcare systems one particular issue is the need to protect smart ‘things’ from unauthorised access. Commonly used access control approaches e.g. Attribute Based Access Control (ABAC), Role Based Access Control (RBAC) and capability based access control do not, in isolation, provide a complete solution for securing access to IoT-enabled smart healthcare devices. They may, for example, require an overly-centralised solution or an unmanageably large policy base. To address these issues we propose a novel access control architecture which improves policy management by reducing the required number of authentication policies in a large-scale healthcare system while providing fine-grained access control. We devise a hybrid access control model employing attributes, roles and capabilities. We apply attributes for role-membership assignment and in permission evaluation. Membership of roles grants capabilities. The capabilities which are issued may be parameterised based on further attributes of the user and are then used to access specific services provided by IoT ‘things’. We also provide a formal specification of the model and a description of its implementation and demonstrate its application through different use-case scenarios. Evaluation results of core functionality of our architecture are provided.
Original languageEnglish
Title of host publicationMobiQuitous 2017 Proceedings of the 14th EAI International Conference on Mobile and Ubiquitous Systems
Subtitle of host publicationComputing, Networking and Services
Place of PublicationNew York
PublisherAssociation for Computing Machinery (ACM)
Pages432-441
Number of pages10
ISBN (Electronic)9781450353687
ISBN (Print)9781450353687
DOIs
Publication statusPublished - 7 Nov 2017
EventEAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services (14th : 2017) - Melbourne, Australia
Duration: 7 Nov 201710 Nov 2017

Conference

ConferenceEAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services (14th : 2017)
Abbreviated titleMobiQuitous 2017
CountryAustralia
CityMelbourne
Period7/11/1710/11/17

Keywords

  • Access control
  • Healthcare systems
  • Internet of things
  • Policy management
  • Security

Fingerprint Dive into the research topics of 'On design of a fine-grained access control architecture for securing iot-enabled smart healthcare systems'. Together they form a unique fingerprint.

Cite this