User-configurable security policies for the smart home
keywords INTERNET OF THINGS, IOT, ONTOLOGIES, SECURITY, SEMANTIC WEB, SMART HOME, SOFTWARE, USABLE SECURITY
Reference persons LUIGI DE RUSSIS
External reference persons Alberto Monge Roffarello
Research Groups DAUIN - GR-10 - Intelligent and Interactive Systems - e-LITE
Thesis type EXPERIMENTAL, RESEARCH
Description Security policies are currently configurable by expert users, who know the details and the consequences of their actions and choices. However, in a smart home domain, inhabitants would like or need to set up some policies to secure their own home, without having to become expert beforehand. Therefore, they would benefit from the possibility of creating some "high-level policies", while delegating some of the needed checks to a suitable system. An example of such high-level policies could be "tonight, don't record video in the living room".
The goal of the thesis is to define which are the main elements of such high-level policies and to implement them, so that the suitable "low-level" policies in XACML (eXtensible Access Control Markup Language) can be generated. To continue with the previous example, a XACML policy could inform the smart home that tonight (i.e., 8pm to 10pm) the camera present in the living room cannot accept any request for recording. The policy definition and the related generation towards XACML-like policies will be realized with Semantic Web technologies, namely OWL ontologies.
Required skills Programmazione in Java.
Deadline 31/03/2022 PROPONI LA TUA CANDIDATURA