Access Control Models and Architectures for Iot and Cyber Physical Systems
暫譯: 物聯網與網路物理系統的存取控制模型與架構

本書介紹了無所不在且日益增長的物聯網（IoT）和網路物理系統（Cyber Physical Systems）的網路安全方面。它還介紹了一系列概念性、理論性和基礎性的存取控制解決方案。這些解決方案是由作者開發的，旨在提供一個更廣泛的視角和基於實證的方法來解決物聯網和網路物理系統中的存取控制問題。

作者討論了不同的架構、框架、存取控制模型、實作場景以及在不同物聯網和網路物理系統領域中的廣泛使用案例。這為讀者提供了一組直觀且易於閱讀的章節。作者還討論了由主要業界廠商提供的物聯網和網路物理系統存取控制解決方案，包括亞馬遜網路服務（Amazon Web Services, AWS）和谷歌雲端平台（Google Cloud Platform, GCP）。這些解決方案擴展了作者提出的細粒度解決方案，並與這些廣泛使用的雲端和邊緣支援平台相結合。

本書旨在服務於計算機科學和網路安全社群，包括研究人員、學者和學生。對物聯網、網路物理系統、隱私和安全方面有更廣泛興趣的從業者也會發現本書的價值。由於本書的整體規劃和周到組織，讀者預期能深入了解最先進的存取控制架構和安全模型，以應對韌性物聯網和網路物理系統的需求。

Maanak Gupta is an Assistant Professor in the Department of Computer Science at Tennessee Tech University, USA. He received his Ph.D. in Computer Science from the University of Texas at San Antonio and has worked as a Postdoctoral Research Fellow at the Institute for Cyber Security. He also holds an M.S. degree in Information Systems from Northeastern University, Boston. His primary area of research includes security and privacy in cyber space focused in studying foundational aspects of access control and their application in technologies including cyber physical systems, cloud computing, IoT and Big data. Dr Gupta has worked in developing novel security mechanisms, models and architectures for next generation smart cars, smart cities, intelligent transportation systems and smart farming. He is also interested in machine learning based malware analysis and AI assisted cyber security solutions. His scholarly work is regularly published at top peer-reviewed security venues including ACM SIGSAC conferences and refereed journals. He was awarded the 2019 computer science outstanding doctoral dissertation research award from UT San Antonio. His research has been funded by the US National Science Foundation (NSF), NASA, US Department of Defense (DoD) and private industry.

Smriti Bhatt is an Assistant Professor of Computer Science in the Department of Computing and Cyber Security at Texas A&M University-San Antonio. She has received her Ph.D. in Computer Science from the University of Texas at San Antonio and did her doctoral research at the Institute for Cyber Security (ICS) and Center for Security and Privacy Enhanced Cloud Computing (C-SPECC). Dr. Bhatt's research expertise is in the field of Cyber Security, mainly focused on Access Control and Communication Control models, and Security and Privacy in Cloud Computing and the Internet of Things (IoT). Her current research projects focus on developing secure access control and communication control models for Cloud-Enabled IoT architecture applicable to various IoT domains, such as Smart Home, Smart Health, and Wearable IoT. Her research work also expands into deep learning for IoT security with applications in access control and anomaly detection. She has been actively publishing her work on well-regarded conferences and journals in the field, and also continually serves as an expert reviewer for journals (e.g., IEEE Transactions on Cloud, IEEE Access, and Transactions on Dependable and Secure Computing). She have also served as technical program committee member and co-chair for several conferences and workshops. Furthermore, Dr. Bhatt is enthusiastically involved with various national and local organizations including AnitaB.org, Women in CyberSecurity (WiCyS), and San Antonio Women in IT (SAWIT) for enhancing diversity and inclusion in STEM.

Asma Alshehri is an Assistant Professor in Computer Science at Shaqra University, Shaqra, Saudi Arabia. She received M.S. and Ph.D. in Computer Science from the University of Texas at San Antonio (UTSA). It was her honor to be the first Arabian women to work and graduate from the Institute for Cyber Security (ICS), UTSA. Her primary area of research includes security and privacy in cyber space focused in studying foundational aspects of access control and their application in technologies including cloud computing, IoT and Big Data. She has worked in developing novel security mechanisms, models, and architectures for IoT smart cities, cars, and homes. She is also interested in malware analysis and AI assisted cyber security solutions. She is currently the Vice Dean of IT and E-learning Deanship at Shaqra University, Head of E-learning Unit at University Agency for Educational Affair, and Chair of Computer Science Department at Collage of Science and Humanities at Dhurma. She holds a B.S. degree in Computer Science from Princess Nourah Bint Abdulrahman University, Riyadh, Saudi Arabia

Ravi Sandhu is Professor of Computer Science, Executive Director of the Institute for Cyber Security and Lead PI of the NSF Center for Security and Privacy Enhanced Cloud Computing at the University of Texas at San Antonio, where he holds the Lutcher Brown Endowed Chair in Cyber Security. Previously he served on the faculty at George Mason University (1989-2007) and Ohio State University (1982-1989). He holds BTech and MTech degrees from IIT Bombay and Delhi, and MS and PhD degrees from Rutgers University. He is a Fellow of IEEE, ACM and AAAS, and has received numerous awards from IEEE, ACM, NSA, NIST and IFIP, including the 2018 IEEE Innovation in Societal Infrastructure award for seminal work on role-based access control (RBAC). A prolific and highly cited author, his research has been funded by NSF, NSA, NIST, DARPA, AFOSR, ONR, AFRL, ARO and private industry. His seminal papers on role-based access control established it as the dominant form of access control in practical systems. His numerous other models and mechanisms have also had considerable real-world impact. He served as Editor-in-Chief of the IEEE Transactions on Dependable and Secure Computing, and previously as founding Editor-in-Chief of ACM Transactions on Information and System Security. He was Chairman of ACM SIGSAC, and founded the ACM Conference on Computer and Communications Security, the ACM Symposium on Access Control Models and Technologies and the ACM Conference on Data and Application Security and Privacy. He has served as General Chair, Steering Committee Chair, Program Chair and Committee Member for numerous security conferences. He has consulted for leading industry and government organizations, and has lectured all over the world. He is an inventor on 31 security technology patents and has accumulated over 45,000 Google Scholar citations for his papers. At UTSA his team seeks to pursue world-leading research in both the scientific foundations of cyber security and their applications in diverse 21st century cyber technology domains, including cloud computing, internet of things, autonomous vehicles, big data and blockchain. Particular focus is on foundations and technology of attribute-based access control (ABAC) as a successor to RBAC in these contexts

**Maanak Gupta** 是美國田納西科技大學計算機科學系的助理教授。他在德克薩斯大學聖安東尼奧分校獲得計算機科學博士學位，並曾在網絡安全研究所擔任博士後研究員。他還擁有波士頓東北大學的信息系統碩士學位。他的主要研究領域包括網絡空間中的安全性和隱私，專注於研究訪問控制的基礎方面及其在包括網絡物理系統、雲計算、物聯網和大數據等技術中的應用。Gupta 博士致力於為下一代智能汽車、智慧城市、智能交通系統和智能農業開發新穎的安全機制、模型和架構。他還對基於機器學習的惡意軟體分析和人工智慧輔助的網絡安全解決方案感興趣。他的學術作品定期發表在頂級同行評審的安全會議上，包括 ACM SIGSAC 會議和經過審核的期刊。他曾獲得德克薩斯大學聖安東尼奧分校 2019 年計算機科學傑出博士論文研究獎。他的研究得到了美國國家科學基金會 (NSF)、NASA、美國國防部 (DoD) 和私營行業的資助。

**Smriti Bhatt** 是德克薩斯 A&M 大學聖安東尼奧分校計算與網絡安全系的計算機科學助理教授。她在德克薩斯大學聖安東尼奧分校獲得計算機科學博士學位，並在網絡安全研究所 (ICS) 和安全與隱私增強雲計算中心 (C-SPECC) 進行博士研究。Bhatt 博士的研究專長在於網絡安全，主要集中於訪問控制和通信控制模型，以及雲計算和物聯網 (IoT) 中的安全性和隱私。她目前的研究項目專注於為雲啟用的物聯網架構開發安全的訪問控制和通信控制模型，適用於各種物聯網領域，如智能家居、智能健康和可穿戴物聯網。她的研究工作還擴展到物聯網安全的深度學習，應用於訪問控制和異常檢測。她積極在該領域的知名會議和期刊上發表作品，並持續擔任期刊的專家審稿人（例如，IEEE Transactions on Cloud、IEEE Access 和 Transactions on Dependable and Secure Computing）。她還曾擔任多個會議和研討會的技術程序委員會成員和聯合主席。此外，Bhatt 博士熱衷於參與各種國家和地方組織，包括 AnitaB.org、女性網絡安全 (WiCyS) 和聖安東尼奧女性 IT (SAWIT)，以促進 STEM 領域的多樣性和包容性。

**Asma Alshehri** 是沙特阿拉伯沙克拉大學的計算機科學助理教授。她在德克薩斯大學聖安東尼奧分校 (UTSA) 獲得計算機科學碩士和博士學位。她很榮幸成為第一位在 UTSA 網絡安全研究所 (ICS) 工作並畢業的阿拉伯女性。她的主要研究領域包括網絡空間中的安全性和隱私，專注於研究訪問控制的基礎方面及其在雲計算、物聯網和大數據等技術中的應用。她致力於為物聯網智能城市、汽車和家庭開發新穎的安全機制、模型和架構。她還對惡意軟體分析和人工智慧輔助的網絡安全解決方案感興趣。她目前是沙克拉大學信息技術與電子學習學院的副院長、教育事務大學機構的電子學習單位負責人，以及德爾馬科學與人文學院計算機科學系的主任。她擁有沙特阿拉伯利雅德公主努拉·賓特·阿卜杜拉赫曼大學的計算機科學學士學位。

**Ravi Sandhu** 是德克薩斯大學聖安東尼奧分校的計算機科學教授、網絡安全研究所執行主任以及 NSF 安全與隱私增強雲計算中心的首席研究員，他擔任 Lutcher Brown 網絡安全講座教授。此前，他曾在喬治梅森大學 (1989-2007) 和俄亥俄州立大學 (1982-1989) 任教。他擁有印度理工學院孟買和德里分校的 BTech 和 MTech 學位，以及羅格斯大學的碩士和博士學位。他是 IEEE、ACM 和 AAAS 的會士，並獲得了來自 IEEE、ACM、NSA、NIST 和 IFIP 的多項獎項，包括 2018 年 IEEE 社會基礎設施創新獎，以表彰他在基於角色的訪問控制 (RBAC) 方面的開創性工作。作為一位高產且被廣泛引用的作者，他的研究得到了 NSF、NSA、NIST、DARPA、AFOSR、ONR、AFRL、ARO 和私營行業的資助。他在基於角色的訪問控制方面的開創性論文確立了其在實際系統中的主導地位。他的其他多個模型和機制也對現實世界產生了相當大的影響。他曾擔任 IEEE Transactions on Dependable and Secure Computing 的主編，並曾擔任 ACM Transactions on Information and System Security 的創始主編。他曾擔任 ACM SIGSAC 的主席，並創立了 ACM 計算機與通信安全會議、ACM 訪問控制模型與技術研討會以及 ACM 數據與應用安全與隱私會議。他曾擔任多個安全會議的總主席、指導委員會主席、程序主席和委員會成員。他曾為領先的行業和政府組織提供諮詢，並在全球各地講授課程。他是 31 項安全技術專利的發明人，並為他的論文累積了超過 45,000 次 Google Scholar 引用。在 UTSA，他的團隊致力於在網絡安全的科學基礎及其在包括雲計算、物聯網、自動駕駛汽車、大數據和區塊鏈等多樣化的 21 世紀網絡技術領域的應用中追求世界領先的研究。特別關注基於屬性的訪問控制 (ABAC) 的基礎和技術，作為 RBAC 在這些背景下的繼任者。