With the emergence of the Internet of Things (IoT) technology, the number of related devices has been increasing at a very rapid speed. The security of IoT systems has become a crucial issue. Due to the complex IoT environment and users' unawareness, such issues are usually hard to resolve. Many IoT systems lack proper access control mechanisms and suffer from various large scale attacks. We need a robust and effective secure access control to build IoT systems that retain user privacy and data integrity with high availability.
In this paper, we propose an access control framework based on OAuth 2.0, with which we constructed a remote control system for various devices. The secured authentication schemes prevent possible private data leaks. The proposed framework provides flexibility for further functional extensions with new IoT devices.
Authors: Min-Zheng Shieh (Information Technology Service Center, National Chiao Tung University), Jui-Chun Liu (Information Technology Service Center, National Chiao Tung University), Yi-Chih Kao (Information Technology Service Center, National Chiao Tung University), Shi-Chun Tsai (Department of Computer Science, National Chiao Tung University), Yi-Bing Lin (Department of Computer Science, National Chiao Tung University),
Hide Authors & Abstract