MLS-ABAC: Efficient Multi-Level Security Attribute-Based Access Control scheme

Realizing access control to sensitive data offloaded a Cloud is challenging in the Internet of Things, where various devices with low computational power and different security levels are interconnected. Despite solutions, National Institute Standards Technology (NIST)’s Attribute-Based Access Control (ABAC) model one preferred techniques literature. In this model, users who satisfy policies using both static dynamic attributes allowed data. However, NIST’s ABAC does not support encryption therefore confidentiality. Encryption (ABE) known cryptographic primitive that enables fine-grained over encrypted currently existing ABE schemes do meet requirements or computationally efficient enough for IoT applications. paper, we propose Multi-Level Security (MLS-ABAC) scheme satisfies model. Our construction relies on decryption outsourceable Ciphertext-Policy scheme. Additionally, based realistic application scenarios, only authorized can decrypt ciphertext, check integrity retrieved message. Furthermore, present conceptual formal models our proposed MLS-ABAC architecture along performance metrics. The experimental results show achieves constant ciphertext size ∼230 bytes running times ∼18 ∼10 ms, respectively, independent number attributes.