# Automatic Device Selection and Access PolicyGeneration based on User   Preference for IoTActivity Workflow

**Authors:** Mohammed Al-Shaboti, Aaron Chen, Ian Welch

arXiv: 1904.06495 · 2019-04-16

## TL;DR

This paper presents an intelligent approach for automatic IoT device selection and access policy generation based on user activity workflows, addressing challenges of device discovery and security policy definition in complex smart environments.

## Contribution

It introduces a method that automatically selects devices and generates security policies from user-defined workflows, improving usability and security in IoT environments.

## Key findings

- Genetic Algorithm outperforms other heuristics in efficiency and effectiveness.
- The approach effectively matches devices to user workflows.
- Generated policies enforce least privilege principles.

## Abstract

The emerging Internet of Things (IoT) has lead to a dramatic increase in type, quantity, and the number of functions that can be offered in a smart environment. Future smart environments will be even richer in terms of the number of devices and functionality provided by them. This poses two major challenges a) an end user has to search through a vast number of IoT devices to identify the suitable devices that satisfy their preferences, and b) it is extremely difficult for users to manually define fine-grained security policies to support workflows involving multiple functions. This paper introduces an intelligent new approach to overcome these challenges by a) enabling users to describe their required functionalities in the form of activity workflow, b) automatically selecting a group of devices to satisfy users functional requirements and maximise their preferences over device usage, c) systematically generating local network access control policies to ensure enforce the principle of least privilege. We study different heuristic search algorithms to find the preferred devices for a given workflow. Experiments results show that the Genetic Algorithm is the best, among the algorithms that we test, as it offers a balance between efficiency and effectiveness.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1904.06495/full.md

## Figures

5 figures with captions in the complete paper: https://tomesphere.com/paper/1904.06495/full.md

## References

46 references — full list in the complete paper: https://tomesphere.com/paper/1904.06495/full.md

---
Source: https://tomesphere.com/paper/1904.06495