Developing A Secure Cloud Storage System for Storing IoT Data by Applying Role Based Encryption

Bokefode, Jayant D.; Bhise, Avdhut Suryakant; Satarkar, Prajakta A.; Modani, Dattatray G.

doi:10.1016/j.procs.2016.06.007

Cited by 53 publications

(21 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Minimize data storage [4] Minimize the amount of data stored either on objects or in the cloud to reduce IoT breaches by deleting any portion of data not required to achieve a certain task Deduplication in [50] and anonymisation in [51] schemes Minimize data retention [4] Minimize data retention on IoT objects or in the cloud to prevent data breaches Transient data storage in [52] Encrypt data storage [4] IoT applications should store their data in encrypted format either on the objects or in the cloud Secure storage schemes in [53] and SE in [54] Prevent data leakage [4] Although IoT data may be stared in encrypted format, it is still vulnerable to side channel attacks Monitoring and auditing, SE, anonymisation schemes, and transient data storage Ensure data availability [4] Both CSSs and IoT objects must implement efficient methods to ensure availability of their data Deduplication schemes and Recovery strategy in [55] Ensure authorized access [4] Offering solid mechanisms to control access to IoT data at rest is essential to prevent unauthorized access Physical security and access control in [56] Remove or hide sensitive data [4] IoT applications should first remove a personally identifiable information before storing it…”

Section: Purpose Implementation Techniquesmentioning

confidence: 99%

A Novel Methodology for Securing IoT Objects Based on their Security Level Certificates

Abdulghani¹,

Konstantas²,

Nijdam³

2020

Preprint

View full text Add to dashboard Cite

Internet of Things (IoT) provides a huge business value for customers, organizations, and governments due to the developments of so many applications in different sectors like energy and healthcare. Nevertheless, as a new emerging technology, IoT faces several security concerns that are more challenging than conventional Internet because of its limited resources as well as its complex ecosystem. Toward this end, we first highlight IoT security challenges and briefly discuss its security goals like confidentiality and integrity. Second, we discuss the most common attacks against IoT, along with their violated security goals. We also review the existing frameworks of security and privacy guidelines for IoT and illustrate their shortcomings. Third, we propose a novel framework for securing IoT objects, the key objective of which is to assign different Security Level Certificates (SLCs) for IoT objects based on their hardware capabilities and protection measures. Objects with SLCs, therefore, will be able to communicate with each other or with the Internet in a secure manner. The proposed framework is composed of five main phases. In phase 1, we classify IoT assets into four components: (i) physical objects, (ii) protocols, (iii) data at rest, and (iv) software, which includes operating systems, middlewares, and applications. We also classify IoT objects into five categories based on their hardware capabilities. In phase 2, we propose security and privacy guidelines for previously mentioned IoT assets, along with their protection measures. In phase 3, we classify protection measures into five SLCs, and then we assign different SLCs for IoT objects. In phase 4: we develop a communication plan between objects based on their SLCs. In phase 5, we propose a four-step method to seamlessly integrate our objects with legacy objects ( objects are not developed according to our framework). Fourth, the feasibility and application of this framework are illustrated using smart homes as a case study. Finally, we investigate how our framework would lessen several attacks and threats against IoT like routing attacks and physical damage. We also provide qualitative arguments to show that this framework could be utilized to solve some of IoT security challenges such as tight resource constrains. Moreover, we discuss the shortcomings of our suggested framework.

show abstract

Section: Purpose Implementation Techniquesmentioning

confidence: 99%

A Novel Methodology for Securing IoT Objects Based on their Security Level Certificates

Abdulghani¹,

Konstantas²,

Nijdam³

2020

Preprint

View full text Add to dashboard Cite

show abstract

“…2. Toma de decisiones en organizaciones: Los sensores usados para percibir el entorno físico permiten recuperar información en tiempo real que al ser correctamente gestionada apoya la toma de decisiones en las organizaciones [38], la información recuperada por los dispositivos IoT debe ser tratada y almacenada de acuerdo con la clasificación de la información definida en la política de seguridad de la información de la organización, dicha información puede ser almacenada en la nube de forma segura [39]. Para tomar una decisión en la organización se deben analizar una gran cantidad de datos, lo que supone un gran número de sensores y actuadores conectados a la red, por lo que se implementa la tecnología LiFi para optimizar la velocidad en la transmisión de los datos, para su posterior procesamiento y almacenamiento tanto en la nube pública, como en la nube privada.…”

Section: Domóticaunclassified

LiFi y su integración con la internet de las cosas

Páez¹,

Pineda²,

Sánchez³

2019

Rev. vínculos

View full text Add to dashboard Cite

En el documento, se lleva a cabo una revisión de la literatura sobre la comunicación por medio de la luz visible conocida como Light Fidelity (LiFi, por sus siglas en inglés) y el internet de las cosas (IoT, por sus siglas en inglés). Para lo anterior, se usa una metodología cualitativa de tipo descriptivo, con el fin identificar el funcionamiento de la tecnología LiFi; las ventajas y desventajas que presenta frente a otras tecnologías existentes; y los principios de funcionamiento y oportunidades de la integración de la internet de las cosas con LiFi como uno de los pilares de desarrollo para las ciudades inteligentes. Las conclusiones de la revisión apuntan a que la integración de bombillas LED (Diodo Emisor de Luz) con tecnología LiFi a redes IoT y servicios en la nube, permitirá el fortalecimiento de la iluminación LED conectada donde se aportan nuevos conocimientos y se puede considerar la iluminación como un servicio.

show abstract

“…In [5] authors presented a survey on secure integration of IoT and Cloud Computing, and then they proposed a model for securing this integration. A secure storage system was proposed for storing IoT data in [6], the authors applied a Role Based Access Control policy (RBAC) combined with AES/RSA encryption to manage authenticity and data security, but Role-based access controls (RBAC) may not suffice in the IoT because of the lack of flexibility.. In [7] an authentication model was described based on different access use case scenarios in IoT Clouds.…”

Section: Related Workmentioning

confidence: 99%

A Secure IoT Data Integration in Cloud Storage Systems using ABAC Access Control Policy

Chahid¹,

Marzouk²

2017

IJAERS

View full text Add to dashboard Cite

show abstract

Developing A Secure Cloud Storage System for Storing IoT Data by Applying Role Based Encryption

Cited by 53 publications

References 9 publications

A Novel Methodology for Securing IoT Objects Based on their Security Level Certificates

A Novel Methodology for Securing IoT Objects Based on their Security Level Certificates

LiFi y su integración con la internet de las cosas

A Secure IoT Data Integration in Cloud Storage Systems using ABAC Access Control Policy

Contact Info

Product

Resources

About