当前位置:
X-MOL 学术
›
IEEE Internet Things J.
›
论文详情
Our official English website, www.x-mol.net, welcomes your
feedback! (Note: you will need to create a separate account there.)
PARBAC: Priority-Attribute-Based RBAC Model for Azure IoT Cloud
IEEE Internet of Things Journal ( IF 8.2 ) Pub Date : 1-3-2020 , DOI: 10.1109/jiot.2019.2963794 Abhijeet Thakare , Euijong Lee , Ajay Kumar , Valmik B. Nikam , Young-Gab Kim
IEEE Internet of Things Journal ( IF 8.2 ) Pub Date : 1-3-2020 , DOI: 10.1109/jiot.2019.2963794 Abhijeet Thakare , Euijong Lee , Ajay Kumar , Valmik B. Nikam , Young-Gab Kim
Duties are segregated within a team by using the role-based access control (RBAC) in the Azure Internet of Things (IoT) framework, and only an appropriate level of access is granted to users to perform specific tasks, depending on a given situation. However, the same authentication and authorization mechanism is used for “sort of user,” which increases the operation overload on the cloud server. Moreover, due to its RBAC nature, the IoT framework is inefficient in handling a dynamic situation where multiple users request similar kinds of resources, by creating several repeated roles. This results in inconsistent and inflexible implementation and the loss of the capability to efficiently address policy management, semantics, redundancy issues in roles, dynamic user handling, work delegation issues, scalability, role explosion, individual rights, and security issues in large organizations. In this article, we designed and presented a novel access control model for a significantly large medical scenario with efficient priority-based authentication mechanisms to address the abovementioned problems associated with the Azure IoT cloud. The proposed model encapsulates the enforcement of priority-based resource access rights across multiple users in a large organization, reduces inefficiency and ineffectuality, and supports individuals with the consistent implementation of policies. We evaluated the benefits of the proposed model by comparing it with existing models and the Azure model, using the healthcare use-case situation. The comparison results show that by incorporating the priority attribute facility in the existing RBAC model, the proposed model classifies the policy mechanism based on priority attributes and proves that the proposed model is capable of handling problems that generally occur when dealing with huge dynamic scenarios in large organizations.
中文翻译:
PARBAC:Azure IoT 云的基于优先级属性的 RBAC 模型
通过使用 Azure 物联网 (IoT) 框架中基于角色的访问控制 (RBAC) 来隔离团队内的职责,并且根据给定情况仅向用户授予适当级别的访问权限来执行特定任务。然而,对于“某种用户”使用相同的认证和授权机制,这增加了云服务器的操作负担。此外,由于其 RBAC 性质,物联网框架通过创建多个重复角色来处理多个用户请求类似资源的动态情况时效率低下。这会导致实施不一致且不灵活,并且无法有效解决大型组织中的策略管理、语义、角色冗余问题、动态用户处理、工作委派问题、可扩展性、角色爆炸、个人权限和安全问题。在本文中,我们针对大型医疗场景设计并提出了一种新颖的访问控制模型,该模型具有基于优先级的高效身份验证机制,以解决与 Azure IoT 云相关的上述问题。所提出的模型封装了大型组织中多个用户之间基于优先级的资源访问权限的实施,减少了低效率和无效性,并支持个人一致地实施策略。我们使用医疗保健用例情况,通过将所提出的模型与现有模型和 Azure 模型进行比较,评估了该模型的优点。 对比结果表明,该模型通过在现有RBAC模型中融入优先级属性设施,对基于优先级属性的策略机制进行分类,证明该模型能够处理大规模动态场景时普遍出现的问题。组织。
更新日期:2024-08-22
中文翻译:
PARBAC:Azure IoT 云的基于优先级属性的 RBAC 模型
通过使用 Azure 物联网 (IoT) 框架中基于角色的访问控制 (RBAC) 来隔离团队内的职责,并且根据给定情况仅向用户授予适当级别的访问权限来执行特定任务。然而,对于“某种用户”使用相同的认证和授权机制,这增加了云服务器的操作负担。此外,由于其 RBAC 性质,物联网框架通过创建多个重复角色来处理多个用户请求类似资源的动态情况时效率低下。这会导致实施不一致且不灵活,并且无法有效解决大型组织中的策略管理、语义、角色冗余问题、动态用户处理、工作委派问题、可扩展性、角色爆炸、个人权限和安全问题。在本文中,我们针对大型医疗场景设计并提出了一种新颖的访问控制模型,该模型具有基于优先级的高效身份验证机制,以解决与 Azure IoT 云相关的上述问题。所提出的模型封装了大型组织中多个用户之间基于优先级的资源访问权限的实施,减少了低效率和无效性,并支持个人一致地实施策略。我们使用医疗保健用例情况,通过将所提出的模型与现有模型和 Azure 模型进行比较,评估了该模型的优点。 对比结果表明,该模型通过在现有RBAC模型中融入优先级属性设施,对基于优先级属性的策略机制进行分类,证明该模型能够处理大规模动态场景时普遍出现的问题。组织。
京公网安备 11010802027423号