A Data Security Enhanced Access Control Mechanism in Mobile Edge Computing

Yichen Hou; Sahil Garg; Lin Hui; Dushantha Nalin K. Jayakody; Rui Jin; M. Shamim Hossain

doi:10.1109/ACCESS.2020.3011477

IEEE Access (Jan 2020)

A Data Security Enhanced Access Control Mechanism in Mobile Edge Computing

Yichen Hou,
Sahil Garg,
Lin Hui,
Dushantha Nalin K. Jayakody,
Rui Jin,
M. Shamim Hossain

Affiliations

Yichen Hou: ORCiD; College of Mathematics and Informatics, Fujian Normal University, Fuzhou, China
Sahil Garg: ORCiD; College of Mathematics and Informatics, Fujian Normal University, Fuzhou, China
Lin Hui: ORCiD; College of Mathematics and Informatics, Fujian Normal University, Fuzhou, China
Dushantha Nalin K. Jayakody: School of Computer Science and Robotics, Tomsk Polytechnic University, Tomsk, Russia
Rui Jin: College of Engineering, Mathematics, and Physical Sciences, University of Exeter, Exeter, U.K.
M. Shamim Hossain: ORCiD; Department of Software Engineering, College of Computer and Information Sciences, King Saud University, Riyadh, Saudi Arabia

DOI: https://doi.org/10.1109/ACCESS.2020.3011477
Journal volume & issue: Vol. 8
pp. 136119 – 136130

Abstract

Read online

Mobile edge computing, with characteristics of position awareness, mobile support, low latency, decentralization, and distribution, has received widespread attention from industry and academia, and has been applied to application areas such as intelligent transportation, smart city, and real-time big data analysis. However, it also brings the new security threats, especially data security threats during data access that leads to unauthorized/unauthorized access, alteration and disclosure of data, affecting the confidentiality and integrity of the data. Therefore, access control, as an important method to ensure the security of user data during data access, began to be applied to mobile edge computing. However, the existing access control has the disadvantages of coarse-grain, poor flexibility and accuracy, lack of internal attack considerations, etc., which cannot meet the needs of data security in practical applications of mobile edge computing. In this paper, a data security enhanced Fine-Grained Access Control mechanism (FGAC) is proposed to ensure data security during data access in mobile edge computing. In FGAC, a dynamic fine-grained trusted user grouping scheme based on attributes and metagraphs theory was first designed. Secondly, the scheme was combined with the traditional role-based access control mechanism to assign roles to users based on user group credibility. And then, based on attribute matching the user authentication further verifies whether the user is allowed to perform the access operations to achieve fine-grained data protection. Experimental results show that FGAC can effectively identify malicious users and make group adjustments, while achieving fine-grained access control and assure the data security during the data access process in mobile edge computing.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords