J4 ›› 2012, Vol. 39 ›› Issue (2): 66-72.doi: 10.3969/j.issn.1001-2400.2012.02.012

• 研究论文 • 上一篇    下一篇

物联网感知层一种基于属性的访问控制机制

任方1;马建峰1,2;郝选文1   

  1. (1. 西安电子科技大学 计算机网络与信息安全教育部重点实验室,陕西 西安  710071;
    2. 陕西省物联网实验研究中心,陕西 西安  710071)
  • 收稿日期:2011-05-12 出版日期:2012-04-20 发布日期:2012-05-21
  • 通讯作者: 任方
  • 作者简介:任方(1981-),男,西安电子科技大学博士研究生,E-mail: renfang_81@163.com.
  • 基金资助:

    国家自然科学基金资助项目(60872041, 61072066);中央高校基本科研业务费专项资金资助项目(JY10000903001,JY10000901034)

Attribute-based access control scheme for the perceptive layer  of the Internet of Things

REN Fang1;MA Jianfeng1,2;HAO Xuanwen1   

  1. (1. Ministry of Education Key Lab. of Computer Network and Information Security, Xidian Univ., Xi'an  710071, China;
    2. Shaanxi Experimental Research Center of the Internet of Things, Xi'an  710071, China)
  • Received:2011-05-12 Online:2012-04-20 Published:2012-05-21
  • Contact: REN Fang

摘要:

为了实现物联网感知层的细粒度访问控制和用户的匿名数据访问,提出了一种基于用户属性的访问控制机制,并利用双线性映射给出了具体的算法实现.该方案中,用户以其属性证书为依据向传感器节点发起数据访问请求,传感器节点根据门限原则决定是否允许用户访问.该方案可以实现灵活的细粒度访问控制和匿名的数据访问,用户和传感器节点的信息交互次数达到了最少,节点运算量少,只需要进行一次公钥加密.与现有的传感器网络访问控制方案相比,该方案传感器节点开销较小,可扩展性良好,可以适应物联网感知层的访问控制需求.

关键词: 物联网, 传感器网络, 访问控制, 匿名性

Abstract:

In order to achieve the fine-grained access control and the anonymity of the user access to data in the Internet of Things, an attribute-based access control model is proposed and realized by using the bilinear map. In this scheme, users request data access to the sensor node based on their attributes certificates and the sensor node determines whether to allow access according to the threshold principle. This scheme effectively realizes the flexible fine-graind access control and anonymous access to data. The number of interactions between users and sensor nodes is minimized and the computation of sensor nodes is reduced to one public key encryption. Analysis shows that the scheme has the advantages over the current access control mechanisms of better scalability and lower cost in communication and computation and can adapt to access control requirement of perceptive layer of the Internet of Things.

Key words: the Internet of Things, wireless sensor networks, access control, anonymity

中图分类号: 

  • TP393.01