TY - GEN
T1 - Network access control towards fully-controlled cloud infrastructure
AU - Yamada, Takuya
AU - Takahashi, Keichi
AU - Muraki, Masaya
AU - Date, Susumu
AU - Shimojo, Shinji
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2016/7/2
Y1 - 2016/7/2
N2 - Recently, researchers' and scientists' interest and concern to Internet of Things (IoT) have been remarkably increasing. A diversity of IoT devices such as mobile phones, sensors and even scientific measurement facilities have been connected to the Internet and then generating an enormous amount of data. From the demands on computational resources enough to analyze such data, the utilization of the cloud has been a major trend in these days. Taking aggregation and distribution of data from and to IoT devices on the cloud into consideration, however, access control to such data gives rise to an important problem. Each of IoT devices may have a security policy and each user may have a different attribute. For achieving safe access control to data, a fully-controlled infrastructure where access to network resources is controlled as well as computational resources is required. From such a consideration, this paper proposes an access-controlled networking mechanism that dynamically organizes a flexible and secure network linking IoT devices, computational resources and users on the cloud, based on user's attribute and IoT device security policies. The architecture of FlowSieve, which we have designed and implemented in this preliminary stage of the research, is presented as well as our envisaged fully access-controlled cloud for secure data access.
AB - Recently, researchers' and scientists' interest and concern to Internet of Things (IoT) have been remarkably increasing. A diversity of IoT devices such as mobile phones, sensors and even scientific measurement facilities have been connected to the Internet and then generating an enormous amount of data. From the demands on computational resources enough to analyze such data, the utilization of the cloud has been a major trend in these days. Taking aggregation and distribution of data from and to IoT devices on the cloud into consideration, however, access control to such data gives rise to an important problem. Each of IoT devices may have a security policy and each user may have a different attribute. For achieving safe access control to data, a fully-controlled infrastructure where access to network resources is controlled as well as computational resources is required. From such a consideration, this paper proposes an access-controlled networking mechanism that dynamically organizes a flexible and secure network linking IoT devices, computational resources and users on the cloud, based on user's attribute and IoT device security policies. The architecture of FlowSieve, which we have designed and implemented in this preliminary stage of the research, is presented as well as our envisaged fully access-controlled cloud for secure data access.
KW - Access Control
KW - Cloud Computing
KW - Internet of Things
KW - Software Defined Network
UR - http://www.scopus.com/inward/record.url?scp=85012993490&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85012993490&partnerID=8YFLogxK
U2 - 10.1109/CloudCom.2016.0076
DO - 10.1109/CloudCom.2016.0076
M3 - Conference contribution
AN - SCOPUS:85012993490
T3 - Proceedings of the International Conference on Cloud Computing Technology and Science, CloudCom
SP - 452
EP - 455
BT - Proceedings - 8th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2016
PB - IEEE Computer Society
T2 - 8th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2016
Y2 - 12 December 2016 through 15 December 2016
ER -