OAuth-Based Access Control Framework for IoT Systems

Min-Zheng Shieh*, Jui Chun Liu, Yi-Chih Kao, Shi-Chun Tsai, Yi-Bing Lin

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

1 Scopus citations


With the emergence of the Internet of Things (IoT) technology, the number of related devices has been increasing at a very rapid speed. The security of IoT systems has become a crucial issue. Due to the complex IoT environment and users’ unawareness, such issues are usually hard to resolve. Many IoT systems lack proper access control mechanisms and suffer from various large scale attacks. We need a robust and effective secure access control to build IoT systems that retain user privacy and data integrity with high availability. In this paper, we propose an access control framework based on OAuth 2.0, with which we constructed a remote control system for various devices. The secured authentication schemes prevent possible private data leaks. The proposed framework provides flexibility for further functional extensions with new IoT devices.

Original languageEnglish
Title of host publicationSmart Grid and Internet of Things - 4th EAI International Conference, SGIoT 2020, Proceedings
EditorsYi-Bing Lin, Der-Jiunn Deng
PublisherSpringer Science and Business Media Deutschland GmbH
Number of pages12
ISBN (Print)9783030695132
StatePublished - 5 Dec 2021
Event4th EAI International Conference on Smart Grid and Internet of Things, SGIoT 2020 - TaiChung, Taiwan
Duration: 5 Dec 20206 Dec 2020

Publication series

NameLecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
ISSN (Print)1867-8211
ISSN (Electronic)1867-822X


Conference4th EAI International Conference on Smart Grid and Internet of Things, SGIoT 2020


  • Access control
  • Authentication
  • Internet of Things
  • OAuth


Dive into the research topics of 'OAuth-Based Access Control Framework for IoT Systems'. Together they form a unique fingerprint.

Cite this