Internet of Things Architecture

component verifies the Assertion at the Authentication component and – in case
of positive result – the actual look-up process can start. If the ServiceID is a
pseudonym, then the pseudonym must be resolved first using the
Pseudonymization component. Then, it is checked if the user is allowed to look
up that resulting ServiceID. Finally, the ServiceID is used by the actual look-up
and the ServiceDescription is returned.

User

Interactions)(from WP4

IoT -Service Client Authentication IoT ServiceResolution Authorization Pseudonymization

authenticate(UserCredential) :Assertion

use application(Assertion)

lookupService(ServiceID, Assertion) :ServiceDescription

verify(Assertion) :boolean

resolvePseudonym(ServiceID) :ServiceID

lookupService(ServiceID) :ServiceDescription

authorize(Assertion, ServiceID, ActionT ype) :boolean

Figure 152 : Restricted Look-up.