Secure and Privacy-Aware Data Dissemination for Cloud-Based Applications

Sampaio, Lilia; Silva, Fábio; Souza, Amanda Cartaxo de; Brito, Andrey; Felber, Pascal

doi:10.1145/3147213.3147230

Cited by 8 publications

(5 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• Automotive -device access for automotive software [26] and secure communication between vehicle infotainment system and user devices [67]; • Healthcare -secure heartbeat sensor application [36], critical medical services [72] and healthcare data monitoring system [73]; • Smart metering -data dissemination [61] and data aggregation [75]; • Video application -video surveillance devices [46] and duplicate removal operations [69]; • Edge computing -industrial IoT edge devices [43] and edge-cloud communications [63]; • Industrial maintenance -secure smart service for industrial maintenance scenarios [32]; • Payment system -trusted OS for mobile payment system [29]; • Smart home -device authentication for smart home/smart grid scenario [28]. The rest of the papers (about 76%) did not present any IoT scenario.…”

Section: B Iot Scenariosmentioning

confidence: 99%

“…Protection for flow tracking application [59] Trusted framework to develop IoT applications [36] Protection for health data [73] Secure architecture for P2P scenarios [24] Protection for edge computing [63] Comparison between TEE and secure multi-party computation application [62] Protection for video application [46], [69] Secure logger [13], [76] Protection for system analyser [49] Societal model for IoT security [68] Protection for location-based services [60] Trusted auditor [47] Protection for data dissemination [61] Data encryption mechanism [56] Protection for data management [14] Data protection (app) [71] Protection for data aggregation (app) [75] Checker for Industrial gateway communications [52] Lightweithg anonymous authentication [25] Remote attestation mechanism [38] Device snapshot authentication system [32] Control-flow attestation [37] Authentication scheme [58] Remote attestation and channel protection [44] Secure authentication and key distribution [67] Boot attestation [53] Protection for data through authentication [50] Protection and attestation for remote terminal [65] Device private keys protection architecture [28] Remote attestation [64] Keys derivation from device characteristics [31] Authenticity detection service [40] Keys protection against cold boot attacks [55] Cache rootkit exploiting TrustZone [35] vendors, e.g., ARM and Intel, already present many of the general advantages, such as hardware isolation (normal world and the secure world) and mem...…”

Section: Tee Advantages and Disadvantagesmentioning

confidence: 99%

See 1 more Smart Citation

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

et al. 2021

View full text Add to dashboard Cite

Trusted Execution Environments have been applied to improve data security in many distinct application scenarios since they enable data processing in a separate and protected region of memory. To investigate how this technology has been applied to the different IoT scenarios, which commonly deal with specific characteristics such as device resource constraints, we carried out a systematic literature review. For this, we selected and analyzed 58 papers from different conferences and journals, identifying the main IoT solutions and scenarios in which TEE has been employed. We also gathered the mentioned TEE advantages and disadvantages as well as the suggestions for future works. This study gives a general overview of the use of TEEs for cloud/fog-based IoT applications, bringing some challenges and directions.

show abstract

Section: B Iot Scenariosmentioning

confidence: 99%

Section: Tee Advantages and Disadvantagesmentioning

confidence: 99%

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

et al. 2021

View full text Add to dashboard Cite

show abstract

“…It resolves the potential research gaps highlighted by the sink‐based approach of data dissemination. Sampaio et al [68 ] developed an efficient, privacy‐preserving and reliable data dissemination methods, which control the usage of relevant data by third parties. Later on, Kong et al [69 ] proposed a secure querying data dissemination method for the vehicular fog.…”

Section: Privacy‐based Verification and Validation Schemesmentioning

confidence: 99%

Taxonomy of secure data dissemination techniques for IoT environment

Bodkhe

Tanwar

2020

IET Software

View full text Add to dashboard Cite

A huge amount of data is generated from the interaction of various sensors and Internet of Things (IoT) enabled devices used in various smart industrial applications. This enormous amount of data requires fast processing, huge storage capacity, secure dissemination, and aggregation to make it resistant from the attackers. Secure data dissemination for IoT‐based applications has been a prominent issue in consideration with the heterogeneity in generated data. Existing secure data dissemination schemes are inadequate to handle secure data distribution. Research communities across the globe are focused on the delivery of the data among the sensor nodes and overlook the difficulty of its secure streaming. Hence, there is a need to validate the performance of secure data distribution schemes for IoT networks using relevant parameters. Motivated from the aforementioned facts, in this study, we perform a comprehensive review on the state‐of‐the‐art techniques, which can verify and validate the performance of data dissemination schemes for IoT networks. We present a solution taxonomy of various verification and validation methods along with their merits and demerits. Finally, recent issues and future directions on verification and validation methods for the secure data distribution in an IoT network is presented.

show abstract

“…Finally, Sampaio et al built on top of SCBR and consider that publications maybe be restricted to a set of subscribers [41]. Nevertheless, the approach involves a thirdparty entity that filters individual subscriptions according to limitations from the publishers.…”

Section: B Systems Leveraging Teesmentioning

confidence: 99%

PubSub-SGX: Exploiting Trusted Execution Environments for Privacy-Preserving Publish/Subscribe Systems

Arnautov

Brito

Felber

et al. 2018

2018 IEEE 37th Symposium on Reliable Distributed Systems (SRDS)

Self Cite

View full text Add to dashboard Cite

This paper presents PUBSUB-SGX, a content-based publish-subscribe system that exploits trusted execution environments (TEEs), such as Intel SGX, to guarantee confidentiality and integrity of data as well as anonymity and privacy of publishers and subscribers. We describe the technical details of our Python implementation, as well as the required system support introduced to deploy our system in a container-based runtime. Our evaluation results show that our approach is sound, while at the same time highlighting the performance and scalability trade-offs. In particular, by supporting just-in-time compilation inside of TEEs, Python programs inside of TEEs are in general faster than when executed natively using standard CPython.

show abstract

Secure and Privacy-Aware Data Dissemination for Cloud-Based Applications

Cited by 8 publications

References 23 publications

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

Taxonomy of secure data dissemination techniques for IoT environment

PubSub-SGX: Exploiting Trusted Execution Environments for Privacy-Preserving Publish/Subscribe Systems

Contact Info

Product

Resources

About