Communications of the ACM
Researchers Develop Smart-Car Identity and Access Management System
Credit: City, University of London
Researchers at City, University of London have developed an identity and access management system to make smart cars less vulnerable to cyber attacks.
Through usage control policies, the SIUV system issues privileges to drivers or applications based on their credentials or claims. Access to in-car resources is based on the issued privileges. Subject claims, resource attributions, and environmental conditions are monitored continuously, allowing the system to reevaluate policies or revoke issued privileges and usage decisions as necessary.
The system uses verifiable credentials to ensure claims are secure and verifiable. It is described in "SIUV: A Smart Car Identity Management and Usage Control System Based on Verifiable Credentials," published in IFIP Advances in Information and Communication Technology.
The researchers indicate that the U.K. Driver and Vehicle Licensing Agency could issue cryptographically verifiable credentials as driver's licenses, with SIUV employed to validate the claims within the credential on an ongoing basis and allow or deny access to in-car components based on its usage control policy evaluations.
From City, University of London
View Full Article
Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA
No entries found