Towards Secure Fog Computing: A Survey on Trust Management, Privacy, Authentication, Threats and Access Control

Patwary, Abdullah Al-Noman; Naha, Ranesh Kumar; Garg, Saurabh; Battula, Sudheer Kumar; Patwary, Anwarul Kaium; Aghasian, Erfan; Amin, Muhammad Bilal; Mahanti, Anirban; Gong, Mingwei

doi:10.3390/electronics10101171

Cited by 40 publications

(19 citation statements)

References 162 publications

(173 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It makes it with the help of a PPDP method of choice, which is independent of the actual mashup strategy. In contrast, privacy-preserving data partitioning solutions used in fog computing environments are based on simple noise addition [31].…”

Section: Discussionmentioning

confidence: 99%

“…The larger the number of sensitive attributes in an access-controlled dataset, the greater the loss of analytical utility if exposing only publicly available data attributes. Data partitioning has been proposed as a method for privacy preservation in distributed environments [31]. It is based on a simple PPDP strategy of creating noisy data along with actual data and uploading it to multiple nodes.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Privacy Preservation and Analytical Utility of E-Learning Data Mashups in the Web of Data

2021

View full text Add to dashboard Cite

Virtual learning environments contain valuable data about students that can be correlated and analyzed to optimize learning. Modern learning environments based on data mashups that collect and integrate data from multiple sources are relevant for learning analytics systems because they provide insights into students’ learning. However, data sets involved in mashups may contain personal information of sensitive nature that raises legitimate privacy concerns. Average privacy preservation methods are based on preemptive approaches that limit the published data in a mashup based on access control and authentication schemes. Such limitations may reduce the analytical utility of the data exposed to gain students’ learning insights. In order to reconcile utility and privacy preservation of published data, this research proposes a new data mashup protocol capable of merging and k-anonymizing data sets in cloud-based learning environments without jeopardizing the analytical utility of the information. The implementation of the protocol is based on linked data so that data sets involved in the mashups are semantically described, thereby enabling their combination with relevant educational data sources. The k-anonymized data sets returned by the protocol still retain essential information for supporting general data exploration and statistical analysis tasks. The analytical and empirical evaluation shows that the proposed protocol prevents individuals’ sensitive information from re-identifying.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Privacy Preservation and Analytical Utility of E-Learning Data Mashups in the Web of Data

2021

View full text Add to dashboard Cite

show abstract

“…This paper is organized as follows: Section 2 discusses related research about the cyber security [7][8][9][10], automation [11][12][13], and asset management [14][15][16][17] for IIoT and OT systems. Section 3 proposes the modeling method and data structure for IIoT systems, and Section 4 designs the asset configuration management method.…”

Section: (C) High Reliability and High Availabilitymentioning

confidence: 99%

Asset Management Method of Industrial IoT Systems for Cyber-Security Countermeasures

et al. 2021

View full text Add to dashboard Cite

Cyber-security countermeasures are important for IIoT (industrial Internet of things) systems in which IT (information technology) and OT (operational technology) are integrated. The appropriate asset management is the key to creating strong security systems to protect from various cyber threats. However, the timely and coherent asset management methods used for conventional IT systems are difficult to be implemented for IIoT systems. This is because these systems are composed of various network protocols, various devices, and open technologies. Besides, it is necessary to guarantee reliable and real-time control and save CPU and memory usage for legacy OT devices. In this study, therefore, (1) we model various asset configurations for IIoT systems and design a data structure based on SCAP (Security Content Automation Protocol). (2) We design the functions to automatically acquire the detailed information from edge devices by “asset configuration management agent”, which ensures a low processing load. (3) We implement the proposed asset management system to real edge devices and evaluate the functions. Our contribution is to automate the asset management method that is valid for the cyber security countermeasures in the IIoT systems.

show abstract

“…Due to the rapid adoption of IoT technologies, they are becoming an attractive target for cyber criminals who take advantage of lack of security functions and abilities to compromise IoT devices. Therefore, a plethora of research is emerging to elucidate the security attacks and different security and trust management mechanisms involved in IoT applications [26,27].…”

Section: Literature Reviewmentioning

confidence: 99%

Managing Trust and Detecting Malicious Groups in Peer-to-Peer IoT Networks

Alhussain

Kurdi

Altoaimy

2021

Sensors

View full text Add to dashboard Cite

Peer-to-peer (P2P) networking is becoming prevalent in Internet of Thing (IoT) platforms due to its low-cost low-latency advantages over cloud-based solutions. However, P2P networking suffers from several critical security flaws that expose devices to remote attacks, eavesdropping and credential theft due to malicious peers who actively work to compromise networks. Therefore, trust and reputation management systems are emerging to address this problem. However, most systems struggle to identify new smart models of malicious peers, especially those who cooperate together to harm other peers. This paper proposes an intelligent trust management system, namely, Trutect, to tackle this issue. Trutect exploits the power of neural networks to provide recommendations on the trustworthiness of each peer. The system identifies the specific model of an individual peer, whether good or malicious. The system also detects malicious collectives and their suspicious group members. The experimental results show that compared to rival trust management systems, Trutect raises the success rates of good peers at a significantly lower running time. It is also capable of accurately identifying the peer model.

show abstract

Towards Secure Fog Computing: A Survey on Trust Management, Privacy, Authentication, Threats and Access Control

Cited by 40 publications

References 162 publications

Privacy Preservation and Analytical Utility of E-Learning Data Mashups in the Web of Data

Privacy Preservation and Analytical Utility of E-Learning Data Mashups in the Web of Data

Asset Management Method of Industrial IoT Systems for Cyber-Security Countermeasures

Managing Trust and Detecting Malicious Groups in Peer-to-Peer IoT Networks

Contact Info

Product

Resources

About