Identity and Access Management for the Computing Continuum
Chalima Dimitra Nassar Kyriakidou, Athanasia Maria Papathanasiou, Vasilios A. Siris, Nikos Fotiou, George C. Polyzos, Eduardo C\'anovas Mart\'inez, Antonio Skarmeta
TL;DR
This paper presents a Zero-Trust access control framework for the computing continuum using decentralized identifiers and relationship-based policies, demonstrating its feasibility and security benefits.
Contribution
It introduces a novel Zero-Trust access control approach leveraging DIDs, VCs, and ReBAC tailored for the dynamic computing continuum environment.
Findings
Feasibility demonstrated through a proof-of-concept implementation
Enhanced security and trust in decentralized environments
Efficient access control policy management in heterogeneous systems
Abstract
The computing continuum introduces new challenges for access control due to its dynamic, distributed, and heterogeneous nature. In this paper, we propose a Zero-Trust (ZT) access control solution that leverages decentralized identification and authentication mechanisms based on Decentralized Identifiers (DIDs) and Verifiable Credentials (VCs). Additionally, we employ Relationship-Based Access Control (ReBAC) to define policies that capture the evolving trust relationships inherent in the continuum. Through a proof-of-concept implementation, we demonstrate the feasibility and efficiency of our solution, highlighting its potential to enhance security and trust in decentralized environments.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.