Global identity management in the Internet of Things

In the Internet of Things (IoT), objects are seamlessly interconnected by anyone, anywhere, and anytime on behalf of user(s) as an effective actor (<I>EA</I>) for the communication. An actor in the IoT is any identified entity, which needs to be interacting with other entities using the...

Full description

Bibliographic Details
Main Author: Majeed, Ausama A.
Published: University of Salford 2018
Online Access:https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.741163
id ndltd-bl.uk-oai-ethos.bl.uk-741163
record_format oai_dc
collection NDLTD
sources NDLTD
description In the Internet of Things (IoT), objects are seamlessly interconnected by anyone, anywhere, and anytime on behalf of user(s) as an effective actor (<I>EA</I>) for the communication. An actor in the IoT is any identified entity, which needs to be interacting with other entities using the Internet technologies. The service providers (<I>SPs</I>) need to truly establish the <I>EA</I> identity behind the communicated object(s) to offer him/her the right service, which is the vision of the IoT. Theoretically, actors could have different identity attributes and identifiers that are managed by different Identity Management systems (<I>IdMs</I>) in every domain they interact with. These <I>IdMs</I> are not always interoperable with each other because they often use different identity attributes and identification systems, which causes that identities are unrecognized across their <I>IdM</I> domains. This can have an impact on the <I>SPs</I> ability to establish the <I>EA</I> identity across their domain, which is a key to realize the IoT. Moreover, the communicated objects identities are widely used as an alternative or secondary identity for their users based on fixed relationship between the user and their devices that can also be used to identify their <I>EAs</I> identities. However, the actor relationships are not always fixed in the IoT; they can be changed or even revoked. This make identifying the actual requester (<I>EA</I>) identity in the IoT a challenge task facing the <I>SPs</I>. Hence, it is important to consider them when identifying the <I>EA</I> of the communicated object in the IoT. This research addresses the <I>SPs</I> difficulty to truly establish the <I>EA</I> identity behind the communicated objects to offer the right services in the IoT environment. This research proposes a new identification technique to facilitate the establishment of the actual requester’s (i.e. the <I>EA</I>) identity behind the communicated object by the <I>SPs</I> in the IoT. This technique requires the existence of four identity parameters for the interacted actors, which are the actor type, Internet connectivity, identifier, and the identity provider (<I>IdP</I>) identifier. Moreover, the actor relationship type between the <I>EA</I> and the communication object(s) that are used to request services or data in the IoT environment has been determined. Thus, a new semantic identifier called a global actor relationship identifier (<I>GARI</I>) is formulated to represent the actors identity that are participating in a relationship and the actor relationship type between them. Furthermore, to solve the <I>IdMs</I> interoperability across-domain, a global identity management system (<I>GIdM</I>) is proposed to consolidate the <I>IdMs</I> in the IoT environment by using distributed trusted third parties. <I>GIdM</I> includes the design of a new protocol called a global identity verification protocol (<I>GIdV</I>). <I>GIdV</I> facilitates the establishment of a dynamic trust relationship and the validation of the <I>EA</I> identity based on the relationship type and a set of identity attributes. To prove the concept, a testing environment has been built to mimic requesting services or data across-domain in the IoT environment. The simulation testing proves the effectiveness of the developed solutions (<I>GARI</I> and the <I>GIdM</I> system) to establish the <I>EA</I> identity in the IoT environment using the basics scenarios of interaction. Moreover, the comparison with the state of the art identifiers in the IoT shows that the <I>GARI</I> is the only one that presents the interacted actors identity parameters along with their relationship(s) type to use in the IoT environment. Therefore, the <I>GIdM</I> with the <I>GARI</I> is the most suitable <I>IdM</I> that supports the <I>SPs</I> to establish a required trust relationship and verify the <I>EA</I> identity across-domain in the IoT environment based on the actor identity attributes and the relationship(s) type in the IoT environment.
author Majeed, Ausama A.
spellingShingle Majeed, Ausama A.
Global identity management in the Internet of Things
author_facet Majeed, Ausama A.
author_sort Majeed, Ausama A.
title Global identity management in the Internet of Things
title_short Global identity management in the Internet of Things
title_full Global identity management in the Internet of Things
title_fullStr Global identity management in the Internet of Things
title_full_unstemmed Global identity management in the Internet of Things
title_sort global identity management in the internet of things
publisher University of Salford
publishDate 2018
url https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.741163
work_keys_str_mv AT majeedausamaa globalidentitymanagementintheinternetofthings
_version_ 1718807456010731520
spelling ndltd-bl.uk-oai-ethos.bl.uk-7411632019-01-08T03:22:32ZGlobal identity management in the Internet of ThingsMajeed, Ausama A.2018In the Internet of Things (IoT), objects are seamlessly interconnected by anyone, anywhere, and anytime on behalf of user(s) as an effective actor (<I>EA</I>) for the communication. An actor in the IoT is any identified entity, which needs to be interacting with other entities using the Internet technologies. The service providers (<I>SPs</I>) need to truly establish the <I>EA</I> identity behind the communicated object(s) to offer him/her the right service, which is the vision of the IoT. Theoretically, actors could have different identity attributes and identifiers that are managed by different Identity Management systems (<I>IdMs</I>) in every domain they interact with. These <I>IdMs</I> are not always interoperable with each other because they often use different identity attributes and identification systems, which causes that identities are unrecognized across their <I>IdM</I> domains. This can have an impact on the <I>SPs</I> ability to establish the <I>EA</I> identity across their domain, which is a key to realize the IoT. Moreover, the communicated objects identities are widely used as an alternative or secondary identity for their users based on fixed relationship between the user and their devices that can also be used to identify their <I>EAs</I> identities. However, the actor relationships are not always fixed in the IoT; they can be changed or even revoked. This make identifying the actual requester (<I>EA</I>) identity in the IoT a challenge task facing the <I>SPs</I>. Hence, it is important to consider them when identifying the <I>EA</I> of the communicated object in the IoT. This research addresses the <I>SPs</I> difficulty to truly establish the <I>EA</I> identity behind the communicated objects to offer the right services in the IoT environment. This research proposes a new identification technique to facilitate the establishment of the actual requester’s (i.e. the <I>EA</I>) identity behind the communicated object by the <I>SPs</I> in the IoT. This technique requires the existence of four identity parameters for the interacted actors, which are the actor type, Internet connectivity, identifier, and the identity provider (<I>IdP</I>) identifier. Moreover, the actor relationship type between the <I>EA</I> and the communication object(s) that are used to request services or data in the IoT environment has been determined. Thus, a new semantic identifier called a global actor relationship identifier (<I>GARI</I>) is formulated to represent the actors identity that are participating in a relationship and the actor relationship type between them. Furthermore, to solve the <I>IdMs</I> interoperability across-domain, a global identity management system (<I>GIdM</I>) is proposed to consolidate the <I>IdMs</I> in the IoT environment by using distributed trusted third parties. <I>GIdM</I> includes the design of a new protocol called a global identity verification protocol (<I>GIdV</I>). <I>GIdV</I> facilitates the establishment of a dynamic trust relationship and the validation of the <I>EA</I> identity based on the relationship type and a set of identity attributes. To prove the concept, a testing environment has been built to mimic requesting services or data across-domain in the IoT environment. The simulation testing proves the effectiveness of the developed solutions (<I>GARI</I> and the <I>GIdM</I> system) to establish the <I>EA</I> identity in the IoT environment using the basics scenarios of interaction. Moreover, the comparison with the state of the art identifiers in the IoT shows that the <I>GARI</I> is the only one that presents the interacted actors identity parameters along with their relationship(s) type to use in the IoT environment. Therefore, the <I>GIdM</I> with the <I>GARI</I> is the most suitable <I>IdM</I> that supports the <I>SPs</I> to establish a required trust relationship and verify the <I>EA</I> identity across-domain in the IoT environment based on the actor identity attributes and the relationship(s) type in the IoT environment.University of Salfordhttps://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.741163http://usir.salford.ac.uk/46700/Electronic Thesis or Dissertation