Fine-grained access control-enabled logging method on ARM TrustZone

Seungho Lee, Hyo Jin Jo, Wonsuk Choi, Hyoseung Kim, Jong Hwan Park, Dong Hoon Lee

Research output: Contribution to journalArticle

Abstract

Most applications for the Internet of Things operate on embedded systems. In particular, embedded devices intended for smart healthcare, smart homes, and smart cars generate logs containing sensitive user information. These logs must be protected from malicious users while also being accessible for legitimate users to utilize them for providing customized services. Unfortunately, the existing logging system only supporting one-to-one encryption based on a server-client model, so there are limitations in building a decentralized logging infrastructure for the hyper-connected era. In this paper, we propose a new secure logging method that supports one-to-many encryption and extends existing logging systems to a decentralized logging infrastructure. In the proposed method, log publishers are able to encrypt generated logs and distribute them to cloud storage in real time and can ensure that only authorized log subscribers access the logs. For one-to-many encryption, we apply a key-policy attribute-based encryption scheme which is suitable for logging systems. For reliability and efficiency of logs, we apply a key-derivation process that cooperates with one-way hash functions within a trusted execution environment. In a real time logging scenario, the proposed method is 93% faster and occupies 83% less storage space than when an original attribute-based encryption scheme is applied. In addition, performance-tunable parameters can optimize our method for various environments.

Original languageEnglish
Article number9082664
Pages (from-to)81348-81364
Number of pages17
JournalIEEE Access
Volume8
DOIs
Publication statusPublished - 2020 Jan 1

Keywords

  • access controls
  • Embedded system
  • privacy
  • secure logging

ASJC Scopus subject areas

  • Computer Science(all)
  • Materials Science(all)
  • Engineering(all)

Fingerprint Dive into the research topics of 'Fine-grained access control-enabled logging method on ARM TrustZone'. Together they form a unique fingerprint.

  • Cite this

    Lee, S., Jo, H. J., Choi, W., Kim, H., Park, J. H., & Lee, D. H. (2020). Fine-grained access control-enabled logging method on ARM TrustZone. IEEE Access, 8, 81348-81364. [9082664]. https://doi.org/10.1109/ACCESS.2020.2991431