Kaltenböck, D., Murturi, I., & Dustdar, S. (2024). A Zero Trust Single Sign-On Framework with Attribute-Based Access Control. In Proceedings : 2024 26th International Conference on Business Informatics : CBI 2024 (pp. 149–157). IEEE. https://doi.org/10.1109/CBI62504.2024.00026
26th International Conference on Business Informatics (CBI 2024)
en
Event date:
9-Sep-2024 - 13-Sep-2024
-
Event place:
Wien, Austria
-
Number of Pages:
9
-
Publisher:
IEEE
-
Peer reviewed:
Yes
-
Keywords:
Zero Trust; IoT; Computing Continuum; ABAC; Security
en
Abstract:
Authentication, authorization, and access control are fundamental functionalities that are crucial for network infrastructures and software applications. These functionalities work together to create a fundamental security layer that allows administrative entities to control user actions. Implementing a security layer may be simple for basic applications, but as modern digital infrastructures become more complex, more advanced security systems are needed. Traditional perimeter-based security models, long relied upon for securing large networks, exhibit vulnerabilities and lack adaptability to modern architectures. As technology advances, there is a growing demand for new authentication and authorization systems to keep up with the changes. Zero Trust (ZT) emerges as a paradigm embodying such principles and concepts for constructing contemporary security systems. This paper introduces a ZT-based Single SignOn (SSO) framework to demonstrate how ZT can be realized in multi-service environments using Attribute-Based Access Control (ABAC). A prototype is developed to show the feasibility and applicability of the proposed framework in a smart city context.
en
Project title:
Twinning action for spreading excellence in Artificial Intelligence of Things: 101079214 (European Commission) Intent-based data operation in the computing continuum: 101135576 (European Commission)
