International Research Journal of Engineering and Technology (IRJET)
e-ISSN: 2395-0056
Volume: 12 Issue: 10 | Oct 2025
p-ISSN: 2395-0072
www.irjet.net
A Context-Aware Access-Control Framework for Securing Distributed IoT Environments Diaeldin Izeldin Mohamed1, Dr. Sally D. Abualgasim2, Dr. Yasir Abdelgadir Mohamed3 1 University of Gezira, Faculty of Engineering and Technology, Wad-Medani, Sudan 2 University of Gezira, Faculty of Engineering and Technology, Wad-Medani, Sudan 3 A’Sharqiyah University, College of Business Administration/MIS, Ibra, Oman
--------------------------------------------------------------------***--------------------------------------------------------------------substantial security and privacy challenges. A lot of IoT Abstract –
nodes are thought to be resource-constrained, which means they may not have the computing power or storage space so as to employ standard encryption and authentication methods [2]. Furthermore, the extreme heterogeneity of devices, their dynamic operating conditions, and the massive scale of deployment render traditional access control approaches inadequate for protecting modern IoT infrastructures [3]. These limitations draw the attention to the necessity for a context-aware, adaptive, and lightweight access-control framework capable of maintaining trust, integrity, and availability in dynamic, distributed environments [4].
As Internet of Things (IoT) ecosystems expand across distributed and heterogeneous environments, ensuring finegrained, adaptive, and context-aware access control has become essential for maintaining trust, confidentiality, and resilience. This paper presents a comprehensive access-control framework that integrates environment analysis, dynamic policy enforcement, and defense-in-depth strategies to safeguard IoT resources from both conventional and emerging threats. The proposed model is bult upon classical accesscontrol principles so as to extend functionality through realtime contextual evaluation, multi-layer firewall integration, and adaptive authorization mechanisms. Virtualization and policy-driven automation enable multi-domain deployments, decision accuracy, and administrative efficiency. Experimental validation in a simulated IoT environment shows that the proposed solution managed to reduce unauthorized activities, similarly, offers low access latency, and improves dependability over current IoT access-control techniques. Furthermore, the results confirm the framework’s scalability and its ability to dynamically adjust to evolving network conditions and threat landscapes. This study contributes with a practical and extensible solution so as to secure IoT infrastructures while providing a foundation for future research in intelligent and self-adapting access-control architectures.
1.1 Security and Privacy Challenges in IoT Some of the key challenges in securing IoT systems include: A constrained devices authentication [5]. Trust establishment among untrusted components [6], Detection of rogue nodes [7] [8], Privacy protection for user data[9], Intrusion detection [10], Data integrity and protection [5], Access control in dynamic, distributed contexts [11], Other issues, such as key management and data aggregation [12].
Keywords: Internet of Things, Access Control, Dynamic Authorization, Context-Aware Security, Distributed Resources.
1.2 Access Control in IoT
1. INTRODUCTION
Access control serves as an essential block of information security, that is by defining and regulating which entities are authorized to perform specific actions on system resources, such as devices, data, or services. In the context of the Internet of Things (IoT), access control ensures that only trusted and authenticated entities can interact with devices or access sensitive information, thereby fostering trust among interconnected participants However, to implement an effective access control in IoT environments is commonly considered a challenge, that is because of the scale, resource limitations, and distributed nature of these systems [13] [14]. IoT networks often encompass thousands of heterogeneous devices with varying computational capabilities, communication protocols, and security
The Internet is rapidly evolving from a communication medium connecting human users into a globally interconnected ecosystem of intelligent devices [1]. Rather than functioning as a static network of terminals, future architectures will comprise pervasive systems of sensors, actuators, and embedded electronic components that collectively form the Internet of Things (IoT) [1]. These devices, seamlessly integrated into everyday objects and environments, enabling continuous interaction between the physical and digital realms, and supporting a wide range of applications in many areas, such as healthcare, industry, and smart cities. However, this transformation introduces
© 2025, IRJET
|
Impact Factor value: 8.315
|
ISO 9001:2008 Certified Journal
|
Page 363