Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Digital Power of Attorney for authorization in industrial cyber-physical systems
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0002-8873-9226
2021 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

In the age of digitization, many Cyber-Physical Systems are semi-autonomous and have sufficient power and resources to perform tasks on behalf of users. This thesis defines an authorization technique to transfer the power of legitimate users to trusted CPS or IoT devices, allowing the device to sign or access resources on behalf of the user. The authorization technique is based on digital Power of Attorney, which is a self-contained document generated by the user (principal) and sent to the agent (trusted device). A Power of Attorney contains a timestamp, that makes it invalid after a period of time predefined by the principal. Here, the agent who receives the PoA does not require a separate account; instead, it uses the principal account with limited features. The thesis studies and analyzes other delegation based and subgranting based authorization techniques, such as the OAuth standard. There are certain similarities and differences between OAuth and PoA, that are analyzed based on metrics such as protocol flow, communication type, token format, and control expiration. Considering the benefits and challenges of both the OAuth and PoA, this thesis combines these two techniques and proposes a multilevel subgranting system. The conceptual architecture, protocol flow, design overview, PoA format, use case scenarios, and implementation details of the proposed system are presented. The system is implemented based on an industrial CPS usecase scenario. The results are qualitatively analysed and also quantitatively evaluated based on the metric of computational time.Future work includes security analysis, result evaluation, and comparison of findings with respect to OAuth and other delegation based authorization standards, implementation of PoA based authorization technique from the scratch, and integration with frameworks such as Arrowhead.

Place, publisher, year, edition, pages
Luleå University of Technology, 2021.
Series
Licentiate thesis / Luleå University of Technology, ISSN 1402-1757
National Category
Computer Systems
Research subject
Cyber-Physical Systems
Identifiers
URN: urn:nbn:se:ltu:diva-87196ISBN: 978-91-7790-940-8 (print)ISBN: 978-91-7790-941-5 (electronic)OAI: oai:DiVA.org:ltu-87196DiVA, id: diva2:1596826
Presentation
2021-11-25, A1545, 09:00 (English)
Opponent
Available from: 2021-09-23 Created: 2021-09-23 Last updated: 2021-11-04Bibliographically approved

Open Access in DiVA

fulltext(513 kB)412 downloads
File information
File name FULLTEXT02.pdfFile size 513 kBChecksum SHA-512
a2b5ad5d446212868c5074c3b179d802236541fa9a6dfdfaa298709f3663d06d502afec35b93f11916a91287f16ef9a56685891b359ed8323cdd679d1f6a6ab0
Type fulltextMimetype application/pdf

Authority records

Vattaparambil Sudarsan, Sreelakshmi

Search in DiVA

By author/editor
Vattaparambil Sudarsan, Sreelakshmi
By organisation
Embedded Internet Systems Lab
Computer Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 412 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

isbn
urn-nbn

Altmetric score

isbn
urn-nbn
Total: 827 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf