Seminar: Dynamic Groups and Attribute-Based Access Control for Next-Generation Smart Cars
The Institute for Cyber Security at the University of Texas at San Antonio (UTSA)
January 25, 2019
Patrick F. Taylor Hall, Room 3107
Smart cars are among the essential components and major drivers of future cities and connected world. The interaction among connected entities in this vehicular internet of things domain, which also involves smart traffic infrastructure, restaurant beacons, emergency vehicles, etc., will offer many real-time service applications and provide safer and more pleasant driving experience to consumers. With more than 100 million lines of code and hundreds of sensors, these connected vehicles expose a large attack surface, which can be remotely compromised and exploited by malicious attackers. Security and privacy are big concerns that deter the adoption of smart cars, which if not properly addressed will have grave implications with risk to human life and limb.
In this talk, I will first highlight the access control needs in smart cars ecosystem and present an access control-oriented architecture. Furthermore, I will discuss the proposed dynamic groups and attribute-based access control model for smart cars ecosystem, which considers both system wide attributes-based security policies and individual user privacy preferences for allowing or denying service notifications, alerts and operations to on-board resources. In the end, I will briefly discuss a proof of concept implementation of our solution in AWS IoT cloud platform.
Maanak Gupta is currently a Postdoctoral Research Fellow at the Institute for Cyber Security at the University of Texas at San Antonio (UTSA), Texas, USA. Previously he received his Ph.D. in Computer Science from UTSA under the supervision of Prof. Ravi Sandhu in December 2018. His primary area of research includes security and privacy in cyber space. In particular, he is interested in studying scientific foundational aspects of access control and their applications in real world 21st century technologies including Smart Cars, Internet of Things, Cloud Computing, Blockchain and Big Data. His research has been regularly published at top peer-reviewed security venues including ACM SIGSAC conferences like SACMAT and CODASPY. His doctoral studies have been funded by NSF, DoD ARL and private industry. He has also secured several grants and scholarships from premier cyber security conferences including IEEE S&P, ACSAC and RSA to support his scholarly work.
Maanak holds a master's in Computer Science and in Information Systems from UTSA and Northeastern University, Boston respectively. He has also served as assistant professor at Dehradun Institute of Technology (DIT) University, India. He is a member of IEEE, ACM, IFIP WG 11.3 Working Group on Data and Applications Security and Privacy, and IOT Council European Union. He has also served as reviewer for IEEE TDSC, ESORICS and CIT, and program committee member of RSA Conference Security Scholar program, ACM SACMAT and Computing Conference 2019. His website is: https://scholar.google.com/citations?user=acSa1DYAAAAJ&hl=en