Research Article
Authentication and Access Control for Open Messaging Interface Standard
@INPROCEEDINGS{10.4108/eai.7-11-2017.2273735, author={narges yousefnezhad and Roman Filippov and Asad Javed and Andrea Buda and Manik Madhikermi and Kary Framling}, title={Authentication and Access Control for Open Messaging Interface Standard}, proceedings={14th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services}, publisher={ACM}, proceedings_a={MOBIQUITOUS}, year={2018}, month={4}, keywords={internet of things open messaging interface (o-mi) open data format (o-df) messaging standards user authentication access control security certificate}, doi={10.4108/eai.7-11-2017.2273735} }
- narges yousefnezhad
Roman Filippov
Asad Javed
Andrea Buda
Manik Madhikermi
Kary Framling
Year: 2018
Authentication and Access Control for Open Messaging Interface Standard
MOBIQUITOUS
ACM
DOI: 10.4108/eai.7-11-2017.2273735
Abstract
The number of Internet of Things (IoT) vendors is rapidly growing, providing solutions for all levels of the IoT stack. Despite the universal agreement on the need for a standardized technology stack, following the model of the world-wide-web, a large number of industry-driven domain specific standards hinder the development of a single IoT ecosystem. An attempt to solve this challenge is the introduction of O-MI (Open Messaging Interface) and O-DF (Open Data Format), two domain independent standards published by Open Group. Despite their good compatibility, they define no specific security model. This paper takes the first step of defining a security model for these standards by proposing suitable access control and authentication mechanisms that can regulate the rights of different principles and operations defined in these standards. First, a brief introduction is provided of the O-MI and O-DF standards, including a comparison with existing standards. Second, the envisioned security model is presented, together with the implementation details of the plug-in module developed for the O-MI and O-DF reference implementation.