Advanced Security Considerations in the Arrowhead Framework

Plósz, Sándor; Hegedűs, Csaba; Varga, Pál

doi:10.1007/978-3-319-45480-1_19

Cited by 18 publications

(9 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, Arrowhead is already deployed in dozens of products, and proved its capabilities in another few dozen industrial demonstrations. We keep improving the framework in many aspects: integrated security by ticketing and certificate-based approaches [194], deployment support through advanced plant descriptions, inter-cloud service orchestration [195], and complex use-case demonstrations, including the multi-stakeholder electro-mobility domain.…”

Section: Internet Of Things Platforms and Applicationsmentioning

confidence: 42%

BME VIK Annual Research Report on Electrical Engineering and Computer Science 2016

Charaf

Harsányi

Poppe

et al. 2017

Period. Polytech. Elec. Eng. Comp. Sci.

View full text Add to dashboard Cite

Preface Since being established in 1949, the Faculty of Electrical Engineering and Informatics (VIK) BME has played a flagship role in the development of electronics, IT and computer science in Hungary.We László Jakab (dean, BME VIK) János Levendovszky (vice-dean in charge of scientific affairs, BME VIK) are proud of combining engineering applications with sound scientific results, which is the assurance of high-level industrial collaboration leading to novel results and innovation. The various collaborations with our industrial partners has made it clear that the industry expects methods and results which make their industrial processes more effective and increase productivity and quality. Thus, participation in these collaborations give a competitive edge and ensure the continuous development of VIK. These factors have positioned our Department of Automation and Applied InformaticsDepartment of Automation and Applied Informatics (AUT) is one of the largest and dynamically developing departments at BME with diverse scope competences such as control theory, embedded systems, software modelling, applied software development, Internet of Things, power electronics, mechatronics, and many others. The department's main activities are education, research and development. Training versatile electrical and software engineers with solid practical knowledge is our top priority. Our profile also includes developing high quality software and hardware solutions for industry partners. All of our activities are backed by strong research background.In 2016, the department organized and hosted a number of domestic and international events. In cooperation with the industry, AUT has organized the IoT4U conference. It was dedicated to Internet of Things, cloud and data management as well as the integration of IoT into various formats. RobonAUT, the yearly domestic amateur robotics contest was organized by the department in February 2016. The yearly contest is open to teams of students, organized either in student projects within the department or independent research teams.The next sections summarize the key research results of the department in year 2016. Software Development Methods and Mobile PlatformsThe diversity of mobile platforms necessitates the development of the same mobile application for all major mobile platforms, what requires considerable development effort. Mobile application developers are multiplatform developers, but they still prioritize the platforms, therefore, not all platforms are equally important for them. Appropriate methods, processes and tools are required to support the development in order to achieve better productivity.The research on educational mobile applications that adapt to the mental state of the user required a method for estimating the difficulty of tasks found in the serious games. There are generated or random assignments where the effort required from the user is not known or cannot be estimated in advance.61 (2) IoT and Smart CityThe Internet of Things (IoT) is transforming the surroun...

show abstract

Section: Internet Of Things Platforms and Applicationsmentioning

confidence: 42%

BME VIK Annual Research Report on Electrical Engineering and Computer Science 2016

Charaf

Harsányi

Poppe

et al. 2017

Period. Polytech. Elec. Eng. Comp. Sci.

View full text Add to dashboard Cite

show abstract

“…In the contract-based extension, we use specific constructs in the safety assertions to formally define the temporal constraints, and then take them into account during simulation and verification to validate the design. The service oriented architecture implemented using Arrowhead services uses certificates to generate security tokens [28], which are subsequently used to provide lightweight security to the actual communication. This approach is particularly effective in our vehicle platooning case study, since we perform the more time consuming actions early during platoon creation, to benefit later of a secure communication channel with low overhead.…”

Section: Related Work and Backgroundmentioning

confidence: 99%

“…Both protocols have been tested in a cleartext (HTTP) and in a secured (HTTPS with Arrowhead tokens) manner as well. Authentication for the latter cases are provided by the X.509 certificate hierarchy of Arrowhead [28].…”

Section: Arrowhead Frameworkmentioning

confidence: 99%

A Methodology for the Design of Safety-Compliant and Secure Communication of Autonomous Vehicles

et al. 2019

View full text Add to dashboard Cite

The automotive industry is increasing its effort towards scientific and technological innovations regarding autonomous vehicles. The expectation is a reduction of road accidents, which are too often caused by human errors. Moreover, technological solutions, such as connected autonomous vehicle platoons, are expected to help humans in emergency situations. In this context, safety and security issues do not yet have a satisfactory answer. In this paper, we address the domain of secure communication among vehicles-especially the issues related to authentication and authorization of inter-vehicular signals and services carrying safety commands. We propose a novel design methodology, where we take a contract-based approach for specifying safety, and combine it in the design flow with the use of the Arrowhead Framework to support security. Furthermore, we present the results through a demo, which employs model-based design for software implementation and the physical realization on autonomous model cars. INDEX TERMS Contract-based approach, arrowhead framework, security and safety co-design, autonomous vehicles, heterogeneous design.

show abstract

“…10) Every SW-system requests Orchestration using the obtained endpoint for every connection it wants to establish, services it wants to consume. 11) The Orchestration system cross-checks with authorisation and an Arrowhead session access token [26] might be generated for every connection attempt during the orchestration process. When any of the SW-systems hosted on the device shuts down, the device contacts the DeviceRegistry system and requests a destroyal of the local-cloud-SW-keys.…”

Section: B On-boarding/bootstrapping Proceduresmentioning

confidence: 99%

Interacting with the arrowhead local cloud: On-boarding procedure

Bicaku

Maksuti

Hegedűs

et al. 2018

2018 IEEE Industrial Cyber-Physical Systems (ICPS)

View full text Add to dashboard Cite

Industrial automation systems are advancing rapidly and a wide range of standards, communication protocols and platforms supporting the integration of devices are introduced. It is therefore necessary to design and build appropriate tools and frameworks that allow the integration of devices with multiple systems and services. In this work we present the Arrowhead Framework, used to enable collaborative IoT automation and introduce two support core systems, SystemRegistry and DeviceRegistry, which are needed to create a chain of trust from a hardware device to a software system and its associated services. Furthermore, we propose an on-boarding procedure of a new device interacting with the Arrowhead local cloud. This ensures that only valid and authorized devices can host software systems within an Arrowhead local cloud.

show abstract

Advanced Security Considerations in the Arrowhead Framework

Cited by 18 publications

References 9 publications

BME VIK Annual Research Report on Electrical Engineering and Computer Science 2016

BME VIK Annual Research Report on Electrical Engineering and Computer Science 2016

A Methodology for the Design of Safety-Compliant and Secure Communication of Autonomous Vehicles

Interacting with the arrowhead local cloud: On-boarding procedure

Contact Info

Product

Resources

About