Maanak Gupta - The Institute for Cyber Security at the University of Texas at San Antonio (UTSA)
Smart cars are among the essential components and major drivers of future cities and connected world. The interaction among connected entities in this vehicular internet of things domain, which also involves smart traffic infrastructure, restaurant beacons, emergency vehicles, etc., will offer many real-time service applications and provide safer and more pleasant driving experience to consumers. With more than 100 million lines of code and hundreds of sensors, these connected vehicles expose a large attack surface, which can be remotely compromised and exploited by malicious attackers. Security and privacy are big concerns that deter the adoption of smart cars, which if not properly addressed will have grave implications with risk to human life and limb.
In this talk, I will first highlight the access control needs in smart cars ecosystem and present an access control-oriented architecture. Furthermore, I will discuss the proposed dynamic groups and attribute-based access control model for smart cars ecosystem, which considers both system wide attributes-based security policies and individual user privacy preferences for allowing or denying service notifications, alerts and operations to on-board resources. In the end, I will briefly discuss a proof of concept implementation of our solution in AWS IoT cloud platform.
Friday, January 25, 2019 at 3:00pm