Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Dominik Ziegler; Alexander Marsalek; Bernd Prünster; Josef Sabongui

doi:10.5220/0009792805470552

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Dominik Ziegler, Alexander Marsalek, Bernd Prünster, Josef Sabongui

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).
The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.
Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.
We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.
To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.
Besides, we present performance data.
The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

Originalsprache	englisch
Titel	Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT
Herausgeber (Verlag)	SciTePress - Science and Technology Publications
Seiten	547-552
Band	3
ISBN (Print)	978-989-758-446-6
DOIs	https://doi.org/10.5220/0009792805470552
Publikationsstatus	Veröffentlicht - 2020

Zugriff auf Dokument

10.5220/0009792805470552Lizenz: CC BY-NC-ND 4.0

abe-oauthAkzeptiertes Autorenmanuskript, 139 KB

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption
Dominik Ziegler (Redner/in), Alexander Marsalek (Beitragende/r), Bernd Prünster (Beitragende/r) & Josef Sabongui (Beitragende/r)
9 Juli 2020
Aktivität: Vortrag oder Präsentation › Vortrag bei Konferenz oder Fachtagung › Science to science

Dieses zitieren

Ziegler, D., Marsalek, A., Prünster, B., & Sabongui, J. (2020). Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. in Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT (Band 3, S. 547-552). SciTePress - Science and Technology Publications. https://doi.org/10.5220/0009792805470552

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. / Ziegler, Dominik; Marsalek, Alexander; Prünster, Bernd et al.
Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT. Band 3 SciTePress - Science and Technology Publications, 2020. S. 547-552.

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Ziegler, D, Marsalek, A, Prünster, B & Sabongui, J 2020, Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. in Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT. Bd. 3, SciTePress - Science and Technology Publications, S. 547-552. https://doi.org/10.5220/0009792805470552

@inproceedings{432b25ae6f5a4ee886ba8b74face0dd2,

title = "Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption",

abstract = "We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.",

author = "Dominik Ziegler and Alexander Marsalek and Bernd Pr{\"u}nster and Josef Sabongui",

year = "2020",

doi = "10.5220/0009792805470552",

language = "English",

isbn = "978-989-758-446-6",

volume = "3",

pages = "547--552",

booktitle = "Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT",

publisher = "SciTePress - Science and Technology Publications",

}

TY - GEN

T1 - Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

AU - Ziegler, Dominik

AU - Marsalek, Alexander

AU - Prünster, Bernd

AU - Sabongui, Josef

PY - 2020

Y1 - 2020

N2 - We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

AB - We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

U2 - 10.5220/0009792805470552

DO - 10.5220/0009792805470552

M3 - Conference paper

SN - 978-989-758-446-6

VL - 3

SP - 547

EP - 552

BT - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT

PB - SciTePress - Science and Technology Publications

ER -

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Abstract

Zugriff auf Dokument

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

Aktivitäten

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Dieses zitieren