Approved
Profile Based Access Control Model Using JSON Web Tokens
Aslan Murjan (2018) and Mustafa Albayati (2016)
Start
2022-04-20
Presentation
2023-06-21 13:15
Location:
Finished:
2023-06-22
Master's thesis:
Abstract
The thesis work is about designing a profile based access control system, for a network of devices, using JSON Web Tokens (JWT). Currently a local role based access control system is utilized by the devices, which forces the user credentials to be directly installed on the individual device and the limited selection of roles doesn’t allow for fine grained access rights. This creates an administrative nightmare in a large scale network. Instead of this approach, a profile based access control can be used. The goal of this thesis work is to design an access control system for profile based access control, utilizing JWT technology for distribution. How profile based access control works will be investigated. And the possibilities of enforcing dynamic, user defined and distributed profiles will be explored in contrast to static access tables. The system will allow the admin to create custom access control profiles depending on the use case, instead of being limited by the roles or profiles preinstalled on the device.
Supervisor: Ben Smeets (EIT)
Examiner: Thomas Johansson (EIT)