INSTITUTE SUBSYSTEM DESIGN OF AN ISOLATED MANY- TO-MANY AUTHENTICATION SCHEME ON A SMART CARD BASED ACCESS CONTROL SYSTEM
Recently, Internet of Things (IoT) as a technology trend started being adopted quickly. IoT is a concept in which everyday objects is equipped with computing power and is connected to one another. The rapid growth of IoT increases the need for a physical access control system for IoT devices. Thi...
Saved in:
| Main Author: | |
|---|---|
| Format: | Final Project |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/66558 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| Summary: | Recently, Internet of Things (IoT) as a technology trend started being adopted
quickly. IoT is a concept in which everyday objects is equipped with computing
power and is connected to one another. The rapid growth of IoT increases the need
for a physical access control system for IoT devices. This is especially true if the
IoT device contains confidential data or its use is associated with a certain risk.
One such type of access control system is a many-to-many access control system,
in which many resource-owner and resource-users are involved in the same system.
This type of system benefits in that the user can conveniently access the resources
from different resource-owners using the same system. However, such a system may
create a potential risk, where parties involved in the system may have their data
leaked because of the large number of parties involved in the system, therefore an
‘isolation’ of the parties involved is needed.
In this research, an access control system using smart cards that implement a many-
to-many authentication scheme and is isolated is designed. The system that is
designed and implemented involves three types of parties, namely an administrator
that manages the system, institutes that own resources in which its access can be
controlled, and users that can access resources owned by institutes. This final
project will focus on the institute subsystem. The many-to-many scheme is achieved
through the architecture and system mechanisms defined in this research. The
‘isolated system’ is achieved through network security implementation with the
usage of a VPN and the HTTPS protocol, and through the protection of the smart
cards used through a cryptography scheme. The realized institute subsystem
consists of the institute asset component and the institute server component.
Institute assets are realized through two ESP8266 MCUs, one RC522 RFID reader,
and an LED as an indicator. The institute server is realized through a Raspberry
Pi Zero W single board computer using Python with Flask as the web server, and
SQLite as a database. Every component of the system is successfully implemented
and tested functionally. |
|---|