With the ever-increasing rate of adoption of internet-enabled smart devices, the allure of greater integration of technologies, such as smart home, smart city, and smart grid into everyday life is undeniable. However, this trend inevitably leaves a massive amount of information and infrastructure connected to the public Internet, which exposes the data to many security threats and challenges. In this paper, we discuss the need for fine-grained user access control for IoT smart devices. The inherently distributed nature of IoT environment necessitates the support of multi-authority attribute-based encryption (ABE) for the implementation of fine-grained access control. Therefore, we present a secure fine-grained user access control scheme for data usage in the IoT environment. The proposed scheme is a three-factor user access control scheme, which supports multi-authority ABE and it is highly scalable as both the ABE key size stored in the user’s smart card and ciphertext size needed for authentication request are constant with respect to the number of attributes. Through the formal and informal security analysis, we show that the proposed scheme is secure and robust against several potential attacks required in an IoT environment. Moreover, we demonstrate that the proposed scheme performs at par or better than existing schemes while providing greater functionality features.

随着启用互联网的智能设备的采用率不断提高，不可否认的是，越来越多的技术（如智能家居，智能城市和智能电网）融入日常生活的吸引力。但是，这种趋势不可避免地使大量信息和基础架构连接到公共Internet，这使数据面临许多安全威胁和挑战。在本文中，我们讨论了对IoT智能设备进行细粒度用户访问控制的需求。物联网环境的固有分布式特性要求支持多权限基于属性的加密（ABE），以实现细粒度的访问控制。因此，我们为物联网环境中的数据使用提出了一种安全的细粒度用户访问控制方案。提议的方案是三因素用户访问控制方案，它支持多权限ABE，并且具有很高的可扩展性，因为用户智能卡中存储的ABE密钥大小和身份验证请求所需的密文大小相对于属性数量都是恒定的。通过正式和非正式的安全性分析，我们表明，该方案针对物联网环境中所需的多种潜在攻击是安全且强大的。此外，我们证明了所提出的方案在提供更大的功能特性的同时，其性能与现有方案相当或更好。我们表明，提出的方案安全可靠，可应对物联网环境中所需的多种潜在攻击。此外，我们证明了所提出的方案在提供更大的功能特性的同时，其性能与现有方案相当或更好。我们表明，提出的方案安全可靠，可应对物联网环境中所需的多种潜在攻击。此外，我们证明了所提出的方案在提供更大的功能特性的同时，性能与现有方案相当或更好。