TACIoT: multidimensional trust-aware access control system for the Internet of Things

• Published in: Soft computing (Berlin, Germany) Vol. 20; no. 5; pp. 1763 - 1779
• Main Authors: Bernal Bernabe, Jorge, Hernandez Ramos, Jose Luis, Skarmeta Gomez, Antonio F.
• Format: Journal Article
• Language: English
• Published: Berlin/Heidelberg Springer Berlin Heidelberg 01.05.2016; Springer Nature B.V
• Subjects: Access control; Adaptive control; Artificial Intelligence; Communication; Computational Intelligence; Control; Cybersecurity; Energy consumption; Engineering; Focus; Fuzzy logic; Fuzzy sets; Internet of Things; Lightweight; Mathematical Logic and Foundations; Mechatronics; Proposals; Reputations; Robotics; Simulation; Trust; Trustworthiness; Access control; Security framework; Internet of Things; Trust model
• ISSN: 1432-7643; 1433-7479
• DOI: 10.1007/s00500-015-1705-6

Internet of Things environments are comprised of heterogeneous devices that are continuously exchanging information and being accessed ubiquitously through lossy networks. This drives the need of a flexible, lightweight and adaptive access control mechanism to cope with the pervasive nature of such global ecosystem, ensuring, at the same time, reliable communications between trusted devices. To fill this gap, this paper proposes a flexible trust-aware access control system for IoT (TACIoT), which provides an end-to-end and reliable security mechanism for IoT devices, based on a lightweight authorization mechanism and a novel trust modelthat has been specially devised for IoT environments. TACIoT extends traditional access control systems by taking into account trust values which are based on reputation, quality of service, security considerations and devices’ social relationships. TACIoT has been implemented and evaluated successfully in a real testbed for constrained and non-constrained IoT devices.