{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,8]],"date-time":"2026-07-08T18:23:55Z","timestamp":1783535035918,"version":"3.55.0"},"reference-count":110,"publisher":"MDPI AG","issue":"4","license":[{"start":{"date-parts":[[2023,2,6]],"date-time":"2023-02-06T00:00:00Z","timestamp":1675641600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>Internet of Things (IoT) provides a wide range of services in domestic and industrial environments. Access control plays a crucial role in granting access rights to users and devices when an IoT device is connected to a network. However, many challenges exist in designing and implementing an ideal access control solution for the IoT due to the characteristics of the IoT including but not limited to the variety of the IoT devices, the resource constraints on the IoT devices, and the heterogeneous nature of the IoT. This paper conducts a comprehensive survey on access control in the IoT, including access control requirements, authorization architecture, access control models, access control policies, access control research challenges, and future directions. It identifies and summarizes key access control requirements in the IoT. The paper further evaluates the existing access control models to fulfill the access control requirements. Access control decisions are governed by access control policies. The existing approaches on dynamic policies\u2019 specification are reviewed. The challenges faced by the existing solutions for policies\u2019 specification are highlighted. Finally, the paper presents the research challenges and future directions of access control in the IoT. Due to the variety of IoT applications, there is no one-size-fits-all solution for access control in the IoT. Despite the challenges encountered in designing and implementing the access control in the IoT, it is desired to have an access control solution to meet all the identified requirements to secure the IoT.<\/jats:p>","DOI":"10.3390\/s23041805","type":"journal-article","created":{"date-parts":[[2023,2,6]],"date-time":"2023-02-06T02:57:32Z","timestamp":1675652252000},"page":"1805","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":93,"title":["Access Control for IoT: A Survey of Existing Research, Dynamic Policies and Future Directions"],"prefix":"10.3390","volume":"23","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7733-973X","authenticated-orcid":false,"given":"Kaushik","family":"Ragothaman","sequence":"first","affiliation":[{"name":"College of Business and Information Systems, Dakota State University, Madison, SD 57042, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1962-4847","authenticated-orcid":false,"given":"Yong","family":"Wang","sequence":"additional","affiliation":[{"name":"The Beacom College of Computer and Cyber Sciences, Dakota State University, Madison, SD 57042, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7680-9293","authenticated-orcid":false,"given":"Bhaskar","family":"Rimal","sequence":"additional","affiliation":[{"name":"The Beacom College of Computer and Cyber Sciences, Dakota State University, Madison, SD 57042, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4610-3921","authenticated-orcid":false,"given":"Mark","family":"Lawrence","sequence":"additional","affiliation":[{"name":"The Beacom College of Computer and Cyber Sciences, Dakota State University, Madison, SD 57042, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2023,2,6]]},"reference":[{"key":"ref_1","unstructured":"Statista Research Department (2016). Internet of Things (IoT) Connected Devices Installed Base Worldwide from 2015 to 2025, Statista Research Department."},{"key":"ref_2","first-page":"66","article-title":"The Aftermath of the Dyn DDOS Attack","volume":"39","author":"Shane","year":"2019","journal-title":"Micro"},{"key":"ref_3","unstructured":"Check Point Research (2017). IoTroop Botnet: The Full Investigation, Check Point Research."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"80","DOI":"10.1109\/MC.2017.201","article-title":"DDoS in the IoT: Mirai and Other Botnets","volume":"50","author":"Kolias","year":"2017","journal-title":"Computer"},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Macaulay, T. (2017). Chapter 9\u2014Identity and Access Control Requirements in the IoT, Morgan Kaufmann.","DOI":"10.1016\/B978-0-12-419971-2.00009-1"},{"key":"ref_6","doi-asserted-by":"crossref","unstructured":"Sharma, A., Sharma, S., and Dave, M. (2015, January 8\u201310). Identity and Access management\u2014A Comprehensive Study. Proceedings of the 2015 International Conference on Green Computing and Internet of Things (ICGCIoT), Greater Noida, India.","DOI":"10.1109\/ICGCIoT.2015.7380701"},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"2","DOI":"10.1109\/COMST.2006.315852","article-title":"A Survey of Security Issues in Wireless Sensor Networks","volume":"8","author":"Wang","year":"2006","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"237","DOI":"10.1016\/j.comnet.2016.11.007","article-title":"Access control in the Internet of Things: Big challenges and new opportunities","volume":"112","author":"Ouaddah","year":"2017","journal-title":"Comput. Netw."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"79","DOI":"10.1016\/j.jnca.2019.06.017","article-title":"Access Control in Internet-of-Things: A Survey","volume":"144","author":"Ravidas","year":"2019","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"375","DOI":"10.1007\/s12243-019-00709-7","article-title":"Access Control in the Internet of Things: A Survey of Existing Approaches and Open Research Questions","volume":"74","author":"Bertin","year":"2019","journal-title":"Ann. Telecommun."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"4682","DOI":"10.1109\/JIOT.2020.2969326","article-title":"A Survey on Access Control in the Age of Internet of Things","volume":"7","author":"Qiu","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_12","first-page":"138","article-title":"Centralized, Distributed, and Everything in between: Reviewing Access Control Solutions for the IoT","volume":"54","author":"Laurent","year":"2021","journal-title":"ACM Comput. Surv."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"60","DOI":"10.1504\/IJSN.2021.112837","article-title":"A survey on access control in IoT: Models, architectures and research opportunities","volume":"16","author":"Alnefaie","year":"2021","journal-title":"Int. J. Secur. Netw."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"20","DOI":"10.1109\/MC.2018.2141038","article-title":"End-to-End Trust and Security for Internet of Things Applications","volume":"51","author":"Bhattarai","year":"2018","journal-title":"Computer"},{"key":"ref_15","first-page":"101","article-title":"An introduction to information security","volume":"800","author":"Nieles","year":"2017","journal-title":"NIST Spec. Publ."},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Muthusamy Ragothaman, K.N., and Wang, Y. (2021, January 5\u20138). A Systematic Mapping Study of Access Control in the Internet of Things. Proceedings of the 54th Hawaii International Conference on System Sciences, Kauai, HI, USA.","DOI":"10.24251\/HICSS.2021.853"},{"key":"ref_17","doi-asserted-by":"crossref","unstructured":"Ouaddah, A., Mousannif, H., Abou Elkalam, A., and Ait Ouahman, A. (October, January 29). Access control in IoT: Survey & state of the art. Proceedings of the 2016 5th International Conference on Multimedia Computing and Systems (ICMCS), Marrakech, Morocco.","DOI":"10.1109\/ICMCS.2016.7905662"},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Pal, S. (2019, January 11\u201315). Limitations and Approaches in Access Control and Identity Management for Constrained IoT Resources. Proceedings of the 2019 IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom Workshops), Kyoto, Japan.","DOI":"10.1109\/PERCOMW.2019.8730651"},{"key":"ref_19","doi-asserted-by":"crossref","unstructured":"Cheung, K., Huth, M., Kirk, L., Lundb\u00e6k, L.N., Marques, R., and Petsche, J. (2019, January 3\u20136). Owner-Centric Sharing of Physical Resources, Data, and Data-Driven Insights in Digital Ecosystems. Proceedings of the 24th ACM Symposium on Access Control Models and Technologies (SACMAT \u201919), Toronto, ON, Canada.","DOI":"10.1145\/3322431.3326326"},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Al-Halabi, Y., Raeq, N., and Abu-Dabaseh, F. (2017, January 21\u201323). Study on Access Control Approaches in the Context of Internet of Things: A Survey. Proceedings of the 2017 International Conference on Engineering and Technology (ICET), Antalya, Turkey.","DOI":"10.1109\/ICEngTechnol.2017.8308153"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Nguyen, M., Gani, M.O., and Raychoudhury, V. (2019, January 11\u201315). Yours Truly? Survey on Accessibility of Our Personal Data in the Connected World. Proceedings of the 2019 IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom Workshops), Kyoto, Japan.","DOI":"10.1109\/PERCOMW.2019.8730880"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Ray, I., Abdunabi, R., and Basnet, R. (2019, January 8). Access Control for Internet of Things Applications. Proceedings of the 5th on Cyber-Physical System Security Workshop (CPSS \u201919), Auckland, New Zealand.","DOI":"10.1145\/3327961.3329533"},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Kaur, A., Rai, G., and Malik, A. (2018, January 1\u201312). Authentication and Context Awareness Access Control in Internet of Things: A Review. Proceedings of the 2018 8th International Conference on Cloud Computing, Data Science Engineering (Confluence), Noida, India.","DOI":"10.1109\/CONFLUENCE.2018.8443067"},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"2347","DOI":"10.1109\/COMST.2015.2444095","article-title":"Internet of things: A survey on enabling technologies, protocols, and applications","volume":"17","author":"Guizani","year":"2015","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"80","DOI":"10.1109\/MSECP.2004.1281254","article-title":"Software security","volume":"2","author":"McGraw","year":"2004","journal-title":"IEEE Secur. Priv."},{"key":"ref_26","unstructured":"(2022, November 10). Amazon Devices and Accessories. Available online: https:\/\/www.amazon.com\/smart-home-devices\/b?ie=UTF8&node=9818047011."},{"key":"ref_27","unstructured":"(2022, November 10). Smart Home Automation from Google. Available online: https:\/\/home.google.com\/welcome\/."},{"key":"ref_28","unstructured":"(2022, November 10). SmartThings. Available online: https:\/\/www.smartthings.com\/."},{"key":"ref_29","unstructured":"(2022, November 10). IFTTT. Available online: https:\/\/ifttt.com\/."},{"key":"ref_30","unstructured":"(2022, November 10). Zapier. Available online: https:\/\/zapier.com\/."},{"key":"ref_31","unstructured":"(2022, November 10). Power Automate. Available online: https:\/\/powerautomate.microsoft.com\/en-us\/."},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Alkhresheh, A., Elgazzar, K., and Hassanein, H.S. (2020, January 15\u201319). Adaptive Access Control Policies for IoT Deployments. Proceedings of the 2020 International Wireless Communications and Mobile Computing (IWCMC), Limassol, Cyprus.","DOI":"10.1109\/IWCMC48107.2020.9148090"},{"key":"ref_33","doi-asserted-by":"crossref","unstructured":"Cunnington, D., Manotas, I., Law, M., Mel, G.D., Calo, S., Bertino, E., and Russo, A. (2019, January 27\u201330). A Generative Policy Model for Connected and Autonomous Vehicles. Proceedings of the 2019 IEEE Intelligent Transportation Systems Conference (ITSC), Auckland, New Zealand.","DOI":"10.1109\/ITSC.2019.8916782"},{"key":"ref_34","doi-asserted-by":"crossref","first-page":"11401","DOI":"10.1109\/JIOT.2020.3002709","article-title":"DACIoT: Dynamic Access Control Framework for IoT Deployments","volume":"7","author":"Alkhresheh","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_35","doi-asserted-by":"crossref","unstructured":"El Kalam, A.A., Outchakoucht, A., and Es-Samaali, H. (2018, January 3\u20135). Emergence-Based Access Control: New Approach to Secure the Internet of Things. Proceedings of the 1st International Conference on Digital Tools & Uses Congress (DTUC \u201918), Paris, France.","DOI":"10.1145\/3240117.3240136"},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Bertino, E., Russo, A., Law, M., Calo, S., Manotas, I., Verma, D., Jabal, A.A., Cunnington, D., de Mel, G., and White, G. (2019, January 7\u201310). Generative Policies for Coalition Systems-A Symbolic Learning Framework. Proceedings of the 2019 IEEE 39th International Conference on Distributed Computing Systems (ICDCS), Dallas, TX, USA.","DOI":"10.1109\/ICDCS.2019.00158"},{"key":"ref_37","doi-asserted-by":"crossref","first-page":"78","DOI":"10.1016\/j.is.2017.07.006","article-title":"Security Towards the Edge: Sticky Policy Enforcement for Networked Smart Objects","volume":"71","author":"Sicari","year":"2017","journal-title":"Inf. Syst."},{"key":"ref_38","unstructured":"IETF (2019). RFC8628: OAuth 2.0 Device Authorization Grant, IETF."},{"key":"ref_39","doi-asserted-by":"crossref","unstructured":"Niruntasukrat, A., Issariyapat, C., Pongpaibool, P., Meesublak, K., Aiumsupucgul, P., and Panya, A. (2016, January 23\u201327). Authorization mechanism for MQTT-based Internet of Things. Proceedings of the 2016 IEEE International Conference on Communications Workshops (ICC), Kuala Lumpur, Malaysia.","DOI":"10.1109\/ICCW.2016.7503802"},{"key":"ref_40","doi-asserted-by":"crossref","first-page":"1224","DOI":"10.1109\/JSEN.2014.2361406","article-title":"IoT-OAS: An OAuth-Based Authorization Service Architecture for Secure Services in IoT Scenarios","volume":"15","author":"Cirani","year":"2015","journal-title":"IEEE Sens. J."},{"key":"ref_41","unstructured":"IETF (2014). RFC7252: The Constrained Application Protocol (CoAP), IETF."},{"key":"ref_42","first-page":"116","article-title":"A Survey of Communication Protocols for Internet of Things and Related Challenges of Fog and Cloud Computing Integration","volume":"51","author":"Carpio","year":"2019","journal-title":"ACM Comput. Surv."},{"key":"ref_43","doi-asserted-by":"crossref","first-page":"201071","DOI":"10.1109\/ACCESS.2020.3035849","article-title":"The Use of MQTT in M2M and IoT Systems: A Survey","volume":"8","author":"Mishra","year":"2020","journal-title":"IEEE Access"},{"key":"ref_44","doi-asserted-by":"crossref","first-page":"150","DOI":"10.1016\/j.ifacol.2016.07.169","article-title":"Communication with Resource-Constrained Devices through MQTT for Control Education","volume":"49","author":"Prada","year":"2016","journal-title":"IFAC-PapersOnLine"},{"key":"ref_45","doi-asserted-by":"crossref","unstructured":"Wagle, S. (2016, January 22\u201324). Semantic Data Extraction over MQTT for IoTcentric Wireless Sensor Networks. Proceedings of the 2016 International Conference on Internet of Things and Applications (IOTA), Pune, India.","DOI":"10.1109\/IOTA.2016.7562727"},{"key":"ref_46","unstructured":"Machulak, M., and Richer, J. (2018). User-Managed Access (UMA) 2.0 Grant for OAuth 2.0 Authorization."},{"key":"ref_47","doi-asserted-by":"crossref","first-page":"49","DOI":"10.1109\/MC.2016.337","article-title":"Privacy as a Service: Protecting the Individual in Healthcare Data Processing","volume":"49","author":"Su","year":"2016","journal-title":"Computer"},{"key":"ref_48","doi-asserted-by":"crossref","unstructured":"Lin, C.A., and Liao, C.F. (2020, January 17\u201319). User-Managed Access Delegation for Blockchain-driven IoT Services. Proceedings of the 2020 International Computer Symposium (ICS), Tainan, Taiwan.","DOI":"10.1109\/ICS51289.2020.00097"},{"key":"ref_49","doi-asserted-by":"crossref","unstructured":"Siris, V.A., Dimopoulos, D., Fotiou, N., Voulgaris, S., and Polyzos, G.C. (2019, January 15\u201318). OAuth 2.0 Meets Blockchain for Authorization in Constrained IoT Environments. Proceedings of the 2019 IEEE 5th World Forum on Internet of Things (WF-IoT), Limerick, Ireland.","DOI":"10.1109\/WF-IoT.2019.8767223"},{"key":"ref_50","doi-asserted-by":"crossref","unstructured":"Atlam, H.F., Alassafi, M.O., Alenezi, A., Walters, R.J., and Wills, G.B. (2018, January 19\u201321). XACML for Building Access Control Policies in Internet of Things. Proceedings of the IoTBDS, Madeira, Portugal.","DOI":"10.5220\/0006725102530260"},{"key":"ref_51","doi-asserted-by":"crossref","unstructured":"Rose, S., Borchert, O., Mitchell, S., and Connelly, S. (2020). Zero Trust Architecture, National Institute of Standards and Technology. Technical Report.","DOI":"10.6028\/NIST.SP.800-207-draft2"},{"key":"ref_52","doi-asserted-by":"crossref","unstructured":"Sheikh, N., Pawar, M., and Lawrence, V. (2021, January 10\u201313). Zero trust using Network Micro Segmentation. Proceedings of the IEEE INFOCOM 2021\u2014IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), Vancouver, BC, Canada.","DOI":"10.1109\/INFOCOMWKSHPS51825.2021.9484645"},{"key":"ref_53","doi-asserted-by":"crossref","unstructured":"Albulayhi, K., Abuhussein, A., Alsubaei, F., and Sheldon, F.T. (2020, January 6\u20138). Fine-Grained Access Control in the Era of Cloud Computing: An Analytical Review. Proceedings of the 2020 10th Annual Computing and Communication Workshop and Conference (CCWC), Las Vegas, NV, USA.","DOI":"10.1109\/CCWC47524.2020.9031179"},{"key":"ref_54","doi-asserted-by":"crossref","unstructured":"Shan, T.L., Ismail, S.A., and Azizan, A. (2018, January 24\u201326). Access Control Models for Cloud Computing: A Review. Proceedings of the 2018 2nd International Conference on Telematics and Future Generation Networks (TAFGEN), Kuching, Malaysia.","DOI":"10.1109\/TAFGEN.2018.8580489"},{"key":"ref_55","doi-asserted-by":"crossref","first-page":"65","DOI":"10.1145\/3007204","article-title":"Current Research and Open Problems in Attribute-Based Access Control","volume":"49","author":"Servos","year":"2017","journal-title":"ACM Comput. Surv."},{"key":"ref_56","unstructured":"Kalam, A.A.E., Baida, R.E., Balbiani, P., Benferhat, S., Cuppens, F., Deswarte, Y., Miege, A., Saurel, C., and Trouessin, G. (2003, January 4\u20136). Organization Based Access Control. Proceedings of the POLICY 2003\u2014IEEE 4th International Workshop on Policies for Distributed Systems and Networks, Lake Como, Italy."},{"key":"ref_57","doi-asserted-by":"crossref","first-page":"1189","DOI":"10.1016\/j.mcm.2013.02.006","article-title":"A Capability-Based Security Approach to Manage Access Control in the Internet of Things","volume":"58","author":"Gusmeroli","year":"2013","journal-title":"Math. Comput. Model."},{"key":"ref_58","doi-asserted-by":"crossref","first-page":"1031","DOI":"10.1016\/j.procs.2018.04.144","article-title":"Access Control in IoT Environments: Feasible Scenarios","volume":"130","author":"Andaloussi","year":"2018","journal-title":"Procedia Comput. Sci."},{"key":"ref_59","doi-asserted-by":"crossref","unstructured":"Riabi, I., Ayed, H.K.B., and Saidane, L.A. (2019, January 24\u201328). A Survey on Blockchain Based Access Control for Internet of Things. Proceedings of the 2019 15th International Wireless Communications Mobile Computing Conference (IWCMC), Tangier, Morocco.","DOI":"10.1109\/IWCMC.2019.8766453"},{"key":"ref_60","doi-asserted-by":"crossref","unstructured":"Zhu, X., and Badr, Y. (August, January 30). A Survey on Blockchain-Based Identity Management Systems for the Internet of Things. Proceedings of the 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), Halifax, NS, Canada.","DOI":"10.1109\/Cybermatics_2018.2018.00263"},{"key":"ref_61","doi-asserted-by":"crossref","unstructured":"Sedgewick, P.E., and de Lemos, R. (2018, January 28\u201329). Self-Adaptation Made Easy with Blockchains. Proceedings of the 2018 IEEE\/ACM 13th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS), Gothenburg, Sweden.","DOI":"10.1145\/3194133.3194150"},{"key":"ref_62","first-page":"1202","article-title":"The Internet of Things Ecosystem: Survey of the Current Landscape, Identity Relationship Management, Multifactor Authentication Mechanisms, and Underlying Protocols","volume":"10","author":"Hardy","year":"2016","journal-title":"Int. J. Comput. Inf. Eng."},{"key":"ref_63","doi-asserted-by":"crossref","unstructured":"Nur, M., and Wang, Y. (2021, January 10\u201312). An Overview of Identity Relationship Management in the Internet of Things. Proceedings of the 2021 IEEE International Conference on Consumer Electronics (ICCE), Las Vegas, NV, USA.","DOI":"10.1109\/ICCE50685.2021.9427723"},{"key":"ref_64","doi-asserted-by":"crossref","unstructured":"Nur, M., and Wang, Y. (2022, January 7\u20139). Identity Relationship Management for Internet of Things: A Case Study. Proceedings of the 2022 IEEE International Conference on Consumer Electronics (ICCE), Las Vegas, NV, USA.","DOI":"10.1109\/ICCE53296.2022.9730252"},{"key":"ref_65","doi-asserted-by":"crossref","unstructured":"Tandon, L., Fong, P.W.L., and Safavi-Naini, R. (2018, January 13\u201315). HCAP: A History-Based Capability System for IoT Devices. Proceedings of the23nd ACM on Symposium on Access Control Models and Technologies (SACMAT \u201918), Indianapolis, IN, USA.","DOI":"10.1145\/3205977.3205978"},{"key":"ref_66","doi-asserted-by":"crossref","first-page":"1272","DOI":"10.1109\/JIOT.2017.2708042","article-title":"Access Control Schemes for Implantable Medical Devices: A Survey","volume":"4","author":"Wu","year":"2017","journal-title":"IEEE Internet Things J."},{"key":"ref_67","doi-asserted-by":"crossref","unstructured":"Thirukkumaran, R., and Muthu Kannan, P. (2018, January 23\u201324). Survey: Security and Trust Management in Internet of Things. Proceedings of the 2018 IEEE Global Conference on Wireless Computing and Networking (GCWCN), Lonavala, India.","DOI":"10.1109\/GCWCN.2018.8668640"},{"key":"ref_68","doi-asserted-by":"crossref","first-page":"e471","DOI":"10.7717\/peerj-cs.471","article-title":"Secure and dynamic access control for the Internet of Things (IoT) based traffic system","volume":"7","author":"Aftab","year":"2021","journal-title":"PeerJ Comput. Sci."},{"key":"ref_69","doi-asserted-by":"crossref","unstructured":"Shakarami, M., and Sandhu, R. (2021, January 28). Role-Based Administration of Role-Based Smart Home IoT. Proceedings of the 2021 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems (SAT-CPS \u201921), Virtual Event.","DOI":"10.1145\/3445969.3450426"},{"key":"ref_70","doi-asserted-by":"crossref","first-page":"6077","DOI":"10.1109\/JIOT.2020.3033547","article-title":"From IoT to Future Cyber-Enabled Internet of X and Its Fundamental Issues","volume":"8","author":"Ning","year":"2021","journal-title":"IEEE Internet Things J."},{"key":"ref_71","doi-asserted-by":"crossref","unstructured":"Rouhani, S., and Deters, R. (2019, January 14\u201317). Blockchain Based Access Control Systems: State of the Art and Challenges. Proceedings of the IEEE\/WIC\/ACM International Conference on Web Intelligence (WI \u201919), Thessaloniki, Greece.","DOI":"10.1145\/3350546.3352561"},{"key":"ref_72","doi-asserted-by":"crossref","unstructured":"Kafle, K., Moran, K., Manandhar, S., Nadkarni, A., and Poshyvanyk, D. (2019, January 25\u201327). A Study of Data Store-Based Home Automation. Proceedings of the Ninth ACM Conference on Data and Application Security and Privacy (CODASPY \u201919), Richardson, TX, USA.","DOI":"10.1145\/3292006.3300031"},{"key":"ref_73","doi-asserted-by":"crossref","unstructured":"Tabassum, M., Kropczynski, J., Wisniewski, P., and Lipford, H.R. (2020, January 25\u201330). Smart Home Beyond the Home: A Case for Community-Based Access Control. Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems (CHI \u201920), Honolulu, HI, USA.","DOI":"10.1145\/3313831.3376255"},{"key":"ref_74","doi-asserted-by":"crossref","unstructured":"Jang, W., Chhabra, A., and Prasad, A. (2017, January 3). Enabling Multi-User Controls in Smart Home Devices. Proceedings of the 2017 Workshop on Internet of Things Security and Privacy (IoTS&P \u201917), Dallas, TX, USA.","DOI":"10.1145\/3139937.3139941"},{"key":"ref_75","doi-asserted-by":"crossref","unstructured":"Koh, J., Hong, D., Nagare, S., Boovaraghavan, S., Agarwal, Y., and Gupta, R. (2019, January 13\u201314). Who Can Access What, and When? Understanding Minimal Access Requirements of Building Applications. Proceedings of the 6th ACM International Conference on Systems for Energy-Efficient Buildings, Cities, and Transportation (BuildSys \u201919), New York, NY, USA.","DOI":"10.1145\/3360322.3360868"},{"key":"ref_76","doi-asserted-by":"crossref","unstructured":"Calo, S., Verma, D., Chakraborty, S., Bertino, E., Lupu, E., and Cirincione, G. (2018, January 13\u201315). Self-Generation of Access Control Policies. Proceedings of the 23nd ACM on Symposium on Access Control Models and Technologies (SACMAT \u201918), Indianapolis, IN, USA.","DOI":"10.1145\/3205977.3205995"},{"key":"ref_77","doi-asserted-by":"crossref","first-page":"7001","DOI":"10.1109\/ACCESS.2017.2693380","article-title":"An Access Control Model for Resource Sharing Based on the Role-Based Access Control Intended for Multi-Domain Manufacturing Internet of Things","volume":"5","author":"Liu","year":"2017","journal-title":"IEEE Access"},{"key":"ref_78","doi-asserted-by":"crossref","first-page":"24","DOI":"10.1007\/s42979-019-0022-z","article-title":"Access Controls for IoT Networks","volume":"1","author":"Gabillon","year":"2020","journal-title":"SN Comput. Sci."},{"key":"ref_79","doi-asserted-by":"crossref","first-page":"135","DOI":"10.1016\/j.ins.2020.09.051","article-title":"Adaptive XACML Access Policies for Heterogeneous Distributed IoT Environments","volume":"548","author":"Riad","year":"2021","journal-title":"Inf. Sci."},{"key":"ref_80","doi-asserted-by":"crossref","first-page":"39","DOI":"10.1016\/j.smhl.2017.06.001","article-title":"A Policy Enforcement Framework for Internet of Things Applications in the Smart Health","volume":"3\u20134","author":"Sicari","year":"2017","journal-title":"Smart Health"},{"key":"ref_81","doi-asserted-by":"crossref","first-page":"1946","DOI":"10.1109\/JIOT.2020.3016961","article-title":"AC4AV: A Flexible and Dynamic Access Control Framework for Connected and Autonomous Vehicles","volume":"8","author":"Zhang","year":"2021","journal-title":"IEEE Internet Things J."},{"key":"ref_82","doi-asserted-by":"crossref","unstructured":"Liu, Y., Xiao, M., Zhou, Y., Zhang, D., Zhang, J., Gacanin, H., and Pan, J. (2020, January 25\u201328). An Access Control Mechanism Based on Risk Prediction for the IoV. Proceedings of the 2020 IEEE 91st Vehicular Technology Conference (VTC2020-Spring), Antwerp, Belgium.","DOI":"10.1109\/VTC2020-Spring48590.2020.9129056"},{"key":"ref_83","doi-asserted-by":"crossref","unstructured":"Yu, T., Li, T., Sun, Y., Nanda, S., Smith, V., Sekar, V., and Seshan, S. (2020, January 21\u201324). Learning Context-Aware Policies from Multiple Smart Homes via Federated Multi-Task Learning. Proceedings of the 2020 IEEE\/ACM Fifth International Conference on Internet-of-Things Design and Implementation (IoTDI), Sydney, NSW, Australia.","DOI":"10.1109\/IoTDI49375.2020.00017"},{"key":"ref_84","doi-asserted-by":"crossref","first-page":"2009","DOI":"10.1109\/JIOT.2018.2872440","article-title":"Reinforcement Learning-Based Multiaccess Control and Battery Prediction with Energy Harvesting in IoT Systems","volume":"6","author":"Chu","year":"2019","journal-title":"IEEE Internet Things J."},{"key":"ref_85","doi-asserted-by":"crossref","first-page":"93","DOI":"10.1016\/j.cose.2019.03.016","article-title":"A Blockchain Based Approach for the Definition of Auditable Access Control Systems","volume":"84","author":"Mori","year":"2019","journal-title":"Comput. Secur."},{"key":"ref_86","doi-asserted-by":"crossref","first-page":"1331","DOI":"10.1007\/s10586-020-03190-3","article-title":"Privacy Protection for Fog Computing and the Internet of Things Data Based on Blockchain","volume":"24","author":"Liu","year":"2021","journal-title":"Clust. Comput."},{"key":"ref_87","doi-asserted-by":"crossref","first-page":"124","DOI":"10.1016\/j.jpdc.2020.05.012","article-title":"Blockchain-assisted Access for Federated Smart Grid Domains: Coupling and Features","volume":"144","author":"Alcaraz","year":"2020","journal-title":"J. Parallel Distrib. Comput."},{"key":"ref_88","doi-asserted-by":"crossref","first-page":"6372","DOI":"10.1109\/JIOT.2020.3033434","article-title":"Attribute-Based Access Control for Smart Cities: A Smart-Contract-Driven Framework","volume":"8","author":"Zhang","year":"2021","journal-title":"IEEE Internet Things J."},{"key":"ref_89","unstructured":"Mont, M., Pearson, S., and Bramhall, P. (2003, January 1\u20135). Towards Accountable Management of Identity and Privacy: Sticky Policies and Enforceable Tracing Services. Proceedings of the 14th International Workshop on Database and Expert Systems Applications, Prague, Czech Republic."},{"key":"ref_90","doi-asserted-by":"crossref","first-page":"31","DOI":"10.1145\/3133324","article-title":"Fine-Grained Access Control via Policy-Carrying Data","volume":"18","author":"Padget","year":"2018","journal-title":"ACM Trans. Internet Technol."},{"key":"ref_91","first-page":"2228","article-title":"Dynamic Policies in Internet of Things: Enforcement and Synchronization","volume":"4","author":"Sicari","year":"2017","journal-title":"IEEE Internet Things J."},{"key":"ref_92","doi-asserted-by":"crossref","first-page":"112","DOI":"10.1016\/j.comnet.2018.07.019","article-title":"Decentralizing Privacy Enforcement for Internet of Things Smart Objects","volume":"143","author":"Sagirlar","year":"2018","journal-title":"Comput. Netw."},{"key":"ref_93","doi-asserted-by":"crossref","first-page":"2481","DOI":"10.1109\/TKDE.2019.2936353","article-title":"Sticky Policies: A Survey","volume":"32","author":"Miorandi","year":"2020","journal-title":"IEEE Trans. Knowl. Data Eng."},{"key":"ref_94","doi-asserted-by":"crossref","first-page":"160","DOI":"10.1109\/MCOM.2018.1700793","article-title":"Experimental Testbed for Edge Computing in Fiber-Wireless Broadband Access Networks","volume":"56","author":"Rimal","year":"2018","journal-title":"IEEE Commun. Mag."},{"key":"ref_95","unstructured":"Akhuseyinoglu, N.B., and Joshi, J. (2020). IoT Technologies in Smart Cities: From Sensors to Big Data, Security and Trust, IET."},{"key":"ref_96","first-page":"417","article-title":"Dynamic Access Control Policy Based on Blockchain and Machine Learning for the internet of Things","volume":"8","author":"Outchakoucht","year":"2017","journal-title":"Int. J. Adv. Comput. Sci. Appl."},{"key":"ref_97","first-page":"331","article-title":"Machine Learning based Access Control Framework for the Internet of Things","volume":"11","author":"Outchakoucht","year":"2020","journal-title":"Int. J. Adv. Comput. Sci. Appl."},{"key":"ref_98","doi-asserted-by":"crossref","unstructured":"Pal, S., Hitchens, M., and Varadharajan, V. (2018, January 4\u20136). Modeling Identity for the Internet of Things: Survey, Classification and Trends. Proceedings of the 2018 12th International Conference on Sensing Technology (ICST), Limerick, Ireland.","DOI":"10.1109\/ICSensT.2018.8603595"},{"key":"ref_99","doi-asserted-by":"crossref","unstructured":"Koo, J., and Kim, Y.G. (2017, January 27\u201328). Interoperability of device identification in heterogeneous IoT platforms. Proceedings of the 2017 13th International Computer Engineering Conference (ICENCO), Cairo, Egypt.","DOI":"10.1109\/ICENCO.2017.8289757"},{"key":"ref_100","doi-asserted-by":"crossref","first-page":"4697","DOI":"10.1109\/JIOT.2020.2971773","article-title":"A Survey of Identity Modeling and Identity Addressing in Internet of Things","volume":"7","author":"Ning","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_101","unstructured":"J\u00f8sang, A., Fabre, J., Hay, B., Dalziel, J., and Pope, S. (2005, January 1). Trust requirements in identity management. Proceedings of the 2005 Australasian Workshop on Grid Computing and e-Research, Newcastle, NSW, Australia."},{"key":"ref_102","doi-asserted-by":"crossref","unstructured":"Alp\u00e1r, G., Batina, L., Batten, L., Moonsamy, V., Krasnova, A., Guellier, A., and Natgunanathan, I. (2016, January 16\u201319). New directions in IoT privacy using attribute-based authentication. Proceedings of the ACM International Conference on Computing Frontiers, Como, Italy.","DOI":"10.1145\/2903150.2911710"},{"key":"ref_103","first-page":"8","article-title":"The laws of identity","volume":"12","author":"Cameron","year":"2005","journal-title":"Microsoft Corp."},{"key":"ref_104","unstructured":"Wang, Y., and Nikolai, J. (2017). Security and Privacy in Cyber-Physical Systems: Foundations, Principles and Applications, John Wiley and Sons Ltd."},{"key":"ref_105","doi-asserted-by":"crossref","first-page":"436","DOI":"10.1016\/j.clsr.2018.02.002","article-title":"Normative Challenges of Identification in the Internet of Things: Privacy, Profiling, Discrimination, and the GDPR","volume":"34","author":"Wachter","year":"2018","journal-title":"Comput. Law Secur. Rev."},{"key":"ref_106","doi-asserted-by":"crossref","first-page":"12","DOI":"10.1109\/MCC.2018.043221010","article-title":"IoTChain: Establishing Trust in the Internet of Things Ecosystem Using Blockchain","volume":"5","author":"Yu","year":"2018","journal-title":"IEEE Cloud Comput."},{"key":"ref_107","doi-asserted-by":"crossref","unstructured":"Abdulrahman, E., Alshehri, S., and Cherif, A. (2021, January 8\u201310). Blockchain-Based Access Control for the Internet of Things: A Survey. Proceedings of the 2021 IEEE Asia-Pacific Conference on Computer Science and Data Engineering (CSDE), Brisbane, Australia.","DOI":"10.1109\/CSDE53843.2021.9718468"},{"key":"ref_108","doi-asserted-by":"crossref","first-page":"e4166","DOI":"10.1002\/ett.4166","article-title":"A systematic survey on internet of things: Energy efficiency and interoperability perspective","volume":"32","author":"Rana","year":"2021","journal-title":"Trans. Emerg. Telecommun. Technol."},{"key":"ref_109","first-page":"9","article-title":"A Comprehensive Survey on Interoperability for IIoT: Taxonomy, Standards, and Future Directions","volume":"55","author":"Hazra","year":"2021","journal-title":"ACM Comput. Surv."},{"key":"ref_110","doi-asserted-by":"crossref","first-page":"94880","DOI":"10.1109\/ACCESS.2020.2993363","article-title":"Investigating Messaging Protocols for the Internet of Things (IoT)","volume":"8","author":"Kalyanam","year":"2020","journal-title":"IEEE Access"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/4\/1805\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T18:25:18Z","timestamp":1760120718000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/4\/1805"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,2,6]]},"references-count":110,"journal-issue":{"issue":"4","published-online":{"date-parts":[[2023,2]]}},"alternative-id":["s23041805"],"URL":"https:\/\/doi.org\/10.3390\/s23041805","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,2,6]]}}}