LUCON: Data Flow Control for Message-Based IoT Systems

Schuette, Julian; Brost, Gerd

doi:10.1109/trustcom/bigdatase.2018.00052

Cited by 29 publications

(35 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Based on their observations, they propose some design patterns that can help protect data flow already in the design stage. Schütte and Brost [164] state that data flow enforcement is a requirement in certain contexts, and propose a policycontrolled data flow control framework capable of monitoring messages between entities both statically and at run-time. This allows users to not just specify access policies, but also to state how data elements are allowed to be processed by the system.…”

Section: ) Data Transportmentioning

confidence: 99%

“…A Fog node can set up and maintain highly secure, authenticated channels with remote parties, potentially alleviating some of the challenges involved in designing lightweight Edge devices that need to interact with these parties, as they only need to concern themselves with secure communication with the Fog node. If the Fog node additionally has the ability to access the message content of traffic passing through it, it can enforce data flow policies, e.g., as described in [164], allowing fine-grained data security mechanisms on top of encryption techniques.…”

Section: F Fog-enabled Data Security and Data Sharingmentioning

confidence: 99%

See 1 more Smart Citation

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

297

112

View full text Add to dashboard Cite

A key application of the Internet of Things (IoT) paradigm lies within industrial contexts. Indeed, the emerging Industrial Internet of Things (IIoT), commonly referred to as Industry 4.0, promises to revolutionize production and manufacturing through the use of large numbers of networked embedded sensing devices, and the combination of emerging computing technologies, such as Fog/Cloud Computing and Artificial Intelligence. The IIoT is characterized by an increased degree of inter-connectivity, which not only creates opportunities for the industries that adopt it, but also for cyber-criminals. Indeed, IoT security currently represents one of the major obstacles that prevent the widespread adoption of IIoT technology. Unsurprisingly, such concerns led to an exponential growth of published research over the last few years. To get an overview of the field, we deem it important to systematically survey the academic literature so far, and distill from it various security requirements as well as their popularity. This paper consists of two contributions: our primary contribution is a systematic review of the literature over the period 2011-2019 on IIoT Security, focusing in particular on the security requirements of the IIoT. Our secondary contribution is a reflection on how the relatively new paradigm of Fog computing can be leveraged to address these requirements, and thus improve the security of the IIoT.

show abstract

Section: ) Data Transportmentioning

confidence: 99%

Section: F Fog-enabled Data Security and Data Sharingmentioning

confidence: 99%

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

297

112

View full text Add to dashboard Cite

show abstract

“…However, the more flows there are, the more attacking vectors the IoT cloud systems face. For more extensive data flow analysis of IoT cloud applications, we refer to [47,89,98,103].…”

Section: Security Analysis Approachmentioning

confidence: 99%

IoT Cloud Security Review

et al. 2021

View full text Add to dashboard Cite

Recent years have seen the rapid development and integration of the Internet of Things (IoT) and cloud computing. The market is providing various consumer-oriented smart IoT devices; the mainstream cloud service providers are building their software stacks to support IoT services. With this emerging trend even growing, the security of such smart IoT cloud systems has drawn much research attention in recent years. To better understand the emerging consumer-oriented smart IoT cloud systems for practical engineers and new researchers, this article presents a review of the most recent research efforts on existing, real, already deployed consumer-oriented IoT cloud applications in the past five years using typical case studies. Specifically, we first present a general model for the IoT cloud ecosystem. Then, using the model, we review and summarize recent, representative research works on emerging smart IoT cloud system security using 10 detailed case studies, with the aim that the case studies together provide insights into the insecurity of current emerging IoT cloud systems. We further present a systematic approach to conduct a security analysis for IoT cloud systems. Based on the proposed security analysis approach, we review and suggest potential security risk mitigation methods to protect IoT cloud systems. We also discuss future research challenges for the IoT cloud security area.

show abstract

“…Here, a central auditor collects information from contributing audit hooks, combines the information to synthesize an analysis to determine if the composition is meeting its service requirements (or service levels), and then alerts stakeholders if the constraints are not met [22]. Others in the IoT MCA research community have highlighted audit hooks as options for IoT systems [23], but to our knowledge no frameworks make wide usage of audit hooks to integrate data across multiple disparate components and differing abstractions in IoT architectures (e.g. data arising from functional execution of code on smartphones, connected webservices, and the IoT device hardware).…”

Section: Multi-component Threat Analysis Systemmentioning

confidence: 99%

Detecting Dynamic Security Threats in Multi-Component IoT Systems

Shrestha

Hale

2019

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

The rising ubiquity of the Internet of Things (IoT) has heralded a new era of increasingly prolific and damaging IoT-centric security threat vectors. Fastpaced market demand for multi-featured IoT products urge companies, and their software engineers, to bring products to market quickly, often at the cost of security. Lack of proper security threat analysis tooling during development, testing, and release cycles exacerbate security concerns. In this paper, we augment a security threat analysis tool to use audit hooks, open-source information capture components, and machine learning techniques to profile dynamic wearable and IoT operations spanning multiple components during execution. Our tool encourages data-drive threat identification and analysis approaches that can help software engineers perform dynamic testing and threat analysis to mitigate codelevel vulnerabilities that lead to attacks in IoT applications. Our approach is evaluated by means of a case study involving a system evaluation across several common attack vectors.

show abstract

LUCON: Data Flow Control for Message-Based IoT Systems

Cited by 29 publications

References 22 publications

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

IoT Cloud Security Review

Detecting Dynamic Security Threats in Multi-Component IoT Systems

Contact Info

Product

Resources

About