DIAM-IoT: A Decentralized Identity and Access Management Framework for Internet of Things

@article{Fan2020DIAMIoTAD,
  title={DIAM-IoT: A Decentralized Identity and Access Management Framework for Internet of Things},
  author={Xinxin Fan and Qi Chai and Lei Xu and Dong Guo},
  journal={Proceedings of the 2nd ACM International Symposium on Blockchain and Secure Critical Infrastructure},
  year={2020}
}
  • Xinxin Fan, Qi Chai, Dong Guo
  • Published 6 October 2020
  • Computer Science
  • Proceedings of the 2nd ACM International Symposium on Blockchain and Secure Critical Infrastructure
With the exorbitant growth in the number of connected devices, the lack of proper identity and access management (IAM) mechanisms has become a major concern. The traditional IAM systems, which focus solely on managing people's digital identities, fail to accommodate billions of Internet of Things (IoT) devices. The emerging concepts such as decentralized identifiers (DIDs) and verifiable credentials (VCs) provide new perspectives on incorporating IAM capabilities into IoT ecosystems. In this… 

Figures from this paper

Self-sovereign Identity Management Framework using Smart Contracts
TLDR
OrgID is proposed, a decentralized identity and user-centric data management platform including identity registration and authorization procedures that supports self-sovereign identity architecture leveraged by blockchain and is highly scalable to manage a large number of users.
Decentralized IoT Data Authorization with Pebble Tracker
TLDR
This is the first real-world demo for enabling decentralized IoT data authorization with DIDs and VCs and demonstrates great flexibility and tremendous advantages towards building decentralized and global-scale IoT applications.
Towards Decentralized Identity Management in Multi-stakeholder 6G Networks
TLDR
This article proposes to decentralize identity management in 6G networks to enable secure mutual authentication between network entities of different trust domains without relying on a trusted third party and to empower network entities with the ability to shape and strengthen cross-domain trust relationships by the exchange of verifiable credentials.
DID-eFed: Facilitating Federated Learning as a Service with Decentralized Identities
TLDR
A FLaaS system: DID-eFed, where FL is facilitated by decentralized identities (DID) and a smart contract, which enables a more flexible and credible decentralized access management in the system, while the smart contract offers a frictionless and less error-prone process.
Systematic Analysis of Artificial Intelligence-Based Platforms for Identifying Governance and Access Control
TLDR
The present study is commissioned a Systematic Literature Review (SLR) to accomplish the necessity of a systematic arrangement of the literature that can help identify the right AI platform that can provide identity governance and access control.
Analysis on the Privacy of DID Service Properties in the DID Document
TLDR
This paper analyzes the risks of leaking sensitive information that may be included in the DID authentication process through a scenario and suggests ways to address this problem.

References

SHOWING 1-10 OF 19 REFERENCES
Your IoTs Are (Not) Mine: On the Remote Binding Between IoT Devices and Users
TLDR
This study describes the life cycle of remote binding with a state-machine model which helps to demystify the complexity in various designs and systematically explore the attack surfaces and brings to light questionable practices in the designs of authentication and authorization.
Improving the Privacy of IoT with Decentralised Identifiers (DIDs)
TLDR
The paper analyses the resource requirements of running DIDs on the IoT devices and finds that even quite small devices can successfully deploy DIDs and proposes that the most constrained devices could rely on a proxy approach.
Decentralized IoT Data Authorization with Pebble Tracker
TLDR
This is the first real-world demo for enabling decentralized IoT data authorization with DIDs and VCs and demonstrates great flexibility and tremendous advantages towards building decentralized and global-scale IoT applications.
Enabling Decentralised Identifiers and Verifiable Credentials for Constrained Internet-of-Things Devices using OAuth-based Delegation
TLDR
This paper presents an OAuth-based method to delegate the processing and access policy management to the Authorisation Server thus allowing also systems with constrained IoT devices to benefit from DIDs and VCs.
Internet of Things (IoT)
TLDR
There is a need for coordinated efforts from the research community to address resulting concerns, such as those presented in this special section, as well as several potential research topics identified.
Design and Implementation of an IoT Access Point for Smart Home
TLDR
This paper presents the design and implementation of an IoT access point that supports functionalities of coordination of various wireless transmission protocols and embedded a ZigBee module and implemented ZigBee and UPnP protocols into the designed IoTaccess point, which supports ZigBee communication capabilities over the Internet.
Tell the Device Password: Smart Device Wi-Fi Connection Based on Audio Waves
TLDR
This paper proposes a new Wi-Fi connection method based on MFSK (Multiple frequency-shift keying) and works well in short distance, which enables the correctness and efficiency and puts forward an encryption solution by using jamming signal, which can greatly improve the security of the transmission.
Smart Contracts : Building Blocks for Digital Markets
The contract, a set of promises agreed to in a "meeting of the minds", is the traditional way to formalize a relationship. While contracts are primarily used in business relationships (the focus of
JSON-LD 1.1 – A JSON-based Serialization for Linked Data
TLDR
This specification defines JSON-LD, a JSON-based format to serialize Linked Data, which is primarily intended to be a way to use linked Data in Web-based programming environments, to build interoperable Web services, and to store Linked data inJSON-based storage engines.
Decentralized Identifiers (DIDs) v1.0 - Core architecture, data model, and representations
  • 2020
...
...