CUIAS - A User Identity Authentication Service for Discovery Service
作者: Peng Liu , Ning Kong , Ye Tian , Xiaodong Lee , Baoping Yan
关键词:
摘要: Discovery service (DS) is designed to serve the following lookup function: Given RFID identifier of an object, it returns a list Internet addresses servers about this object across supply chain, which offer detailed information it. The stored in DS commercially sensitive, can reveal flow patterns, trading relationships or inventory levels, etc. Therefore must authenticate user's identity first before user allowed access DS. However, no authentication schemes satisfying actual requirements have been proposed until now. So paper focuses on problem and presents Centralized User Identity Authentication Service (CUIAS) based SAML PKI for DS, deployed as DHT network, offering excellent performance scalability. Through CUIAS, once authenticated, then many times certain period, not only simplifies process but also reduces resource cost. To ensure data availability confidentiality original split into multiple smaller blocks using Information Dispersal Algorithm (IDA) they are scattered within CUIAS. By analysis evaluation, CUIAS satisfy reliable secure service.
sci-hub.se 参考文章(18)
R. Canetti, H. Krawczyk, M. Bellare, HMAC: Keyed-Hashing for Message Authentication RFC. ,vol. 2104, pp. 1- 11 ,(1997)
Jie Shi, Yingjiu Li, Wei He, Darren Sim, SecTTS: A secure track & trace system for RFID-enabled supply chains Computers in Industry. ,vol. 63, pp. 574- 585 ,(2012) , 10.1016/J.COMPIND.2012.03.006
Sergei Evdokimov, Benjamin Fabian, Steffen Kunz, Nina Schoenemann, Comparison of Discovery Service Architectures for the Internet of Things sensor networks ubiquitous and trustworthy computing. pp. 237- 244 ,(2010) , 10.1109/SUTC.2010.22
Benjamin Fabian, Steffen Kunz, Marcel Konnegen, Sebastian Müller, Oliver Günther, Access control for semantic data federations in industrial product-lifecycle management Computers in Industry. ,vol. 63, pp. 930- 940 ,(2012) , 10.1016/J.COMPIND.2012.08.015
Miguel L. Pardal, Mark Harrison, Sanjay Sarma, Jose Alves Marques, Enforcing RFID data visibility restrictions using XACML security policies international conference on rfid. pp. 413- 418 ,(2012) , 10.1109/RFID-TA.2012.6404558
Jie Shi, Darren Sim, Yingjiu Li, Robert Deng, SecDS Proceedings of the second ACM conference on Data and Application Security and Privacy - CODASKY '12. pp. 267- 274 ,(2012) , 10.1145/2133601.2133634
Miguel L. Pardal, Mark Harrison, Jose Alves Marques, Assessment of visibility restriction mechanisms for RFID data Discovery Services international conference on rfid. pp. 165- 171 ,(2012) , 10.1109/RFID.2012.6193045
Michael O. Rabin, Efficient dispersal of information for security, load balancing, and fault tolerance Journal of the ACM. ,vol. 36, pp. 335- 348 ,(1989) , 10.1145/62044.62050
Jie Shi, Yingjiu Li, Robert H Deng, None, A secure and efficient discovery service system in EPCglobal network Computers & Security. ,vol. 31, pp. 870- 885 ,(2012) , 10.1016/J.COSE.2012.08.005
D. Solo, R. Housley, W. Ford, W. Polk, Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile RFC. ,vol. 3280, pp. 1- 129 ,(2002)