Due to inherent resource constraints of embedded systems, it is a challenge to maintain an access control scheme for authorized users. In this paper, we propose a portable and lightweight authentication and access control scheme for embedded devices located in a distributed environment, where maintaining consistent access control among embedded devices is difficult. A portable list of accessible resources with privileges granted to a user is encrypted in. the smart card issued to the user. Without pre-configuring access control information, an embedded system can effectively authenticate a user and deter,mine user privileges. In addition to specific features for distributed embedded systems, the proposed scheme provides many advantages over previous approaches, in terms of implementation. cost, access control facility, and security Protection.

• 出版日期2010-2
• 单位清华大学