HCAP: A History-Based Capability System for IoT Devices
Date
2018-01-23
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Permissions are highly sensitive in Internet-of-Things (IoT) applications, as IoT devices collect our personal data and control the safety of our environment. Rather than simply granting permissions, further constraints shall be imposed on permission usage so as to realize the Principle of Least Privilege. Since IoT devices are physically embedded, they are often accessed in a particular sequence based on their relative physical positions. Monitoring if such sequencing constraints are honoured
when IoT devices are accessed provides a means to fence off malicious accesses. This thesis proposes a history-based capability system, HCAP, for enforcing permission sequencing constraints in a distributed authorization environment. It formally establishes the security guarantees of HCAP, and empirically evaluates its performance.
Description
Keywords
Citation
Tandon, Lakshya (2018). HCAP: A History-Based Capability System for IoT Devices (Master's thesis, University of Calgary, Calgary, Canada). Retrieved from https://prism.ucalgary.ca.