November 2018
Intermediate to advanced
382 pages
11h 20m
English
Content preview from Practical Internet of Things Security - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Defining system roles
IoT systems can oftentimes require complex access control frameworks. Consider the types of devices and types of users who will operate within your system and define a set of roles that will be granted access to various aspects of IoT system administration and operation. In the following example, roles are defined and include multiple roles for devices (such as, privileged versus regular gateway) and users:
| Role | Definition |
| Gateway | Allows communications with IoT devices and other authorized services. |
| Privileged Gateway | Allows standard gateway functions in addition to being able to manage devices (create/delete/update). |
| Device | Devices that can perform routine operations. They can participate in /publish/subscribe ... |