Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Dominik Ziegler; Alexander Marsalek; Bernd Prünster; Josef Sabongui

doi:10.5220/0009792805470552

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Dominik Ziegler, Alexander Marsalek, Bernd Prünster, Josef Sabongui

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).
The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.
Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.
We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.
To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.
Besides, we present performance data.
The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

Original language	English
Title of host publication	Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT
Publisher	SciTePress - Science and Technology Publications
Pages	547-552
Volume	3
ISBN (Print)	978-989-758-446-6
DOIs	https://doi.org/10.5220/0009792805470552
Publication status	Published - 2020

Access to Document

10.5220/0009792805470552Licence: CC BY-NC-ND 4.0

abe-oauthAccepted author manuscript, 139 KB

A-SIT - Secure Information Technology Center Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Project: Research area

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption
Dominik Ziegler (Speaker), Alexander Marsalek (Contributor), Bernd Prünster (Contributor) & Josef Sabongui (Contributor)
9 Jul 2020
Activity: Talk or presentation › Talk at conference or symposium › Science to science

Cite this

Ziegler, D., Marsalek, A., Prünster, B., & Sabongui, J. (2020). Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. In Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT (Vol. 3, pp. 547-552). SciTePress - Science and Technology Publications. https://doi.org/10.5220/0009792805470552

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. / Ziegler, Dominik; Marsalek, Alexander; Prünster, Bernd et al.
Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT. Vol. 3 SciTePress - Science and Technology Publications, 2020. p. 547-552.

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Ziegler, D, Marsalek, A, Prünster, B & Sabongui, J 2020, Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption. in Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT. vol. 3, SciTePress - Science and Technology Publications, pp. 547-552. https://doi.org/10.5220/0009792805470552

@inproceedings{432b25ae6f5a4ee886ba8b74face0dd2,

title = "Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption",

abstract = "We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.",

author = "Dominik Ziegler and Alexander Marsalek and Bernd Pr{\"u}nster and Josef Sabongui",

year = "2020",

doi = "10.5220/0009792805470552",

language = "English",

isbn = "978-989-758-446-6",

volume = "3",

pages = "547--552",

booktitle = "Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT",

publisher = "SciTePress - Science and Technology Publications",

}

TY - GEN

T1 - Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

AU - Ziegler, Dominik

AU - Marsalek, Alexander

AU - Prünster, Bernd

AU - Sabongui, Josef

PY - 2020

Y1 - 2020

N2 - We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

AB - We present a new architectural design to leverage Attribute-Based Encryption in the Industrial Internet of Things (IIoT).The general idea of our approach is to automatically issue and revoke attributes based on already established identity management systems.Our design enables organisations to rely on arbitrary identity and access management solutions across different security domain boundaries.We, furthermore, tackle privacy concerns typically associated with outsourcing sensitive data to the cloud.To demonstrate the feasibility and versatility of our approach, we evaluate our design by integrating both OAuth and the Austrian eID.Besides, we present performance data.The evaluation results clearly show that our proposed design suits the requirements imposed by the IIoT well.

U2 - 10.5220/0009792805470552

DO - 10.5220/0009792805470552

M3 - Conference paper

SN - 978-989-758-446-6

VL - 3

SP - 547

EP - 552

BT - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications: SECRYPT

PB - SciTePress - Science and Technology Publications

ER -

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Abstract

Access to Document

Projects

A-SIT - Secure Information Technology Center Austria

Activities

Efficient Access-Control in the IIoT through Attribute-Based Encryption with Outsourced Decryption

Cite this