Towards an Assurance Framework for Edge and IoT Systems

Anisetti, Marco; Ardagna, Claudio Agostino; Bena, Nicola; Bondaruc, Ruslan

doi:10.1109/edge53862.2021.00015

Cited by 5 publications

(8 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, in this study, we establish a secure channel to protect packets transmitted between UPFA and UPFB. Basically, an edge computer (EC) [6] is placed between UPFA and DN and the other is equipped between DN and UPFB to encrypt and decrypt data delivered between the two UPFs.…”

Section: Introductionmentioning

confidence: 99%

Hybrid Intelligent Security Mechanism for Data Transmission among UPFs belonging to Different 5G Networks

Leu

Liu

et al. 2022

Preprint

View full text Add to dashboard Cite

Recently, 5G networks have gradually surrounded our living environments to color our everyday lives and make our daily activities more convenient than before. However, in 5G networks, packet P transmitted from local UPFA of a 5G network, e.g., 5G-A, to UPFB in P’s destination 5G network, e.g., 5G-B, is not secure, even not encrypted, particularly via the Internet, A ≠ B. This conducts a risk of data leakage along the connection established between UPFA and UPFB. To solve this problem, in this study, we propose an architecture that encrypts/decrypts P to prevent it from being attacked. P is encrypted by an edge computer, e.g., ECA in 5G-A before it is sent to its destination, and decrypted by another edge computer, e.g., ECB in 5G-B. In this paper, the scenario includes data transmission between two users or among n-party users, n > 2. For the former, the cryptography systems used are symmetric and asymmetric encryption/decryption approaches. For the n-party scheme, we adopt Initial Key Agreement (IKA) mechanism which employs Upflow and Downflow processes to establish a secret key for all participating ECs. Besides, message authentication code, and time stamp are also utilized to enhance the security level of data transmission. Our analyses show that this proposed approach can effectively avoid some types of attacks.

show abstract

Section: Introductionmentioning

confidence: 99%

Hybrid Intelligent Security Mechanism for Data Transmission among UPFs belonging to Different 5G Networks

Leu

Liu

et al. 2022

Preprint

View full text Add to dashboard Cite

show abstract

“…Security assurance has been consistently applied in service and cloudbased systems [2], [3], [4], yet it is in its infancy when it comes to IoT systems. Static and punctual assessments have been the preferred approach, but no longer are a viable option [5]. Some preliminary solutions have been defined [5], [6], [7], [8], but alternatives are still lacking.…”

Section: Introductionmentioning

confidence: 99%

“…Static and punctual assessments have been the preferred approach, but no longer are a viable option [5]. Some preliminary solutions have been defined [5], [6], [7], [8], but alternatives are still lacking. In general, they consider lowlevel details and traditional CIA properties (Confidentiality, Integrity, Availability) only, or provide a system overview which is too abstract to be really useful.…”

Section: Introductionmentioning

confidence: 99%

“…In this paper, we build on the security assurance framework in [5], putting forward the idea of IoT assurance driven by a holistic view of the target IoT system. Our approach defines and executes assurance evaluations matching and exploiting the architecture of the target system, distributing and aggregating computation accordingly.…”

Section: Introductionmentioning

confidence: 99%

“…Section III presents our approach for an effective IoT assurance. Section IV introduces a refinement of our previous assurance framework in [5] to support this novel paradigm. Section V includes an initial experimental evaluation of our approach.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Security Assurance in Modern IoT Systems

Bena

Bondaruc

Polimeno

2022

2022 IEEE 95th Vehicular Technology Conference: (VTC2022-Spring)

Self Cite

View full text Add to dashboard Cite

Modern distributed systems consist of a multilayer architecture of IoT, edge, and cloud nodes. Together, they are revolutionizing our lives, bringing intelligence to existing processes (e.g., smart grids) and enabling novel, efficient and effective processes (e.g., remote surgery). This transition however does not come without drawbacks, due to the ever-increasing reliance on devices whose security and safety are, at least, questionable. In this context, research is in its infancy, struggling to adapt successful practices applied, for instance, in cloud systems. Security of modern IoT systems still relies on oldfashioned approaches, mostly static assessments considering only very specific parts of the target system, rather than assessing the system as a whole. In this paper, we put forward the idea of security assurance for IoT, as a higher-level assurance process evaluating the target system at different layers and different moments of its lifecycle, then implemented by a flexible assurance framework. The quality of our approach is evaluated in a realworld smart lighting system.

show abstract