Artificial intelligence-driven composition and security validation of an Internet of Things ecosystem
Autor: | Hatzivasilis, George, Papadakis Nikos, Hatzakis Ilias, Sotirios, Ioannidis Sotirios, Vardakis George |
---|---|
Jazyk: | angličtina |
Předmět: |
IoT
Computer science Distributed computing dynamic system composition 02 engineering and technology Dependability lcsh:Technology Event calculus dependability metrics lcsh:Chemistry JESS 0202 electrical engineering electronic engineering information engineering OSGi General Materials Science lcsh:QH301-705.5 Instrumentation Building automation Fluid Flow and Transfer Processes Ambient intelligence lcsh:T Event (computing) business.industry Process Chemistry and Technology General Engineering 020206 networking & telecommunications 020207 software engineering Attack surface lcsh:QC1-999 Computer Science Applications Open Services Gateway initiative (OSGi) Internet-of-Things lcsh:Biology (General) lcsh:QD1-999 event calculus lcsh:TA1-2040 Moving Target Defenses (MTDs) JADE Key (cryptography) Systems design Moving Target Defenses Dynamic system composition Metrics Java Agent DEvelopment framework (JADE) lcsh:Engineering (General). Civil engineering (General) business lcsh:Physics |
Zdroj: | Applied Sciences, Vol 10, Iss 4862, p 4862 (2020) Applied Sciences Volume 10 Issue 14 |
Popis: | Key challenges in Internet-of-Things (IoT) system design and management include the secure system composition and the calculation of the security and dependability level of the final system. This paper presents an event-based model-checking framework for IoT systems&rsquo design and management, called CompoSecReasoner. It invokes two main functionalities: (i) system composition verification, and (ii) derivation and validation of security, privacy, and dependability (SPD) metrics. To measure the SPD values of a system, we disassemble two well-known types of security metrics&mdash the attack surface methodologies and the medieval castle approach. The first method determines the attackable points of the system, while the second one defines the protection level that is provided by the currently composed system-of-systems. We extend these techniques and apply the Event Calculus method for modelling the dynamic behavior of a system with progress in time. At first, the protection level of the currently composed system is calculated. When composition events occur, the current system status is derived. Thereafter, we can deploy reactive strategies and administrate the system automatically at runtime, implementing a novel setting for Moving Target Defenses. We demonstrate the overall solution on a real ambient intelligence application for managing the embedded devices of two emulated smart buildings. |
Databáze: | OpenAIRE |
Externí odkaz: |