Towards Secure Fog Computing: A Survey on Trust Management, Privacy, Authentication, Threats and Access Control

Fog computing is an emerging computing paradigm that has come into consideration for the deployment of Internet of Things (IoT) applications amongst researchers and technology industries over the last few years. Fog is highly distributed and consists of a wide number of autonomous end devices, which contribute to the processing. However, the variety of devices offered across different users are not audited. Hence, the security of Fog devices is a major concern that should come into consideration. Therefore, to provide the necessary security for Fog devices, there is a need to understand what the security concerns are with regards to Fog. All aspects of Fog security, which have not been covered by other literature works, need to be identified and aggregated. On the other hand, privacy preservation for user’s data in Fog devices and application data processed in Fog devices is another concern. To provide the appropriate level of trust and privacy, there is a need to focus on authentication, threats and access control mechanisms as well as privacy protection techniques in Fog computing. In this paper, a survey along with a taxonomy is proposed, which presents an overview of existing security concerns in the context of the Fog computing paradigm. Moreover, the Blockchain-based solutions towards a secure Fog computing environment is presented and various research challenges and directions for future research are discussed.

Download Full-text

Access Control Mechanisms in Named Data Networks

ACM Computing Surveys ◽

10.1145/3442150 ◽

2021 ◽

Vol 54 (3) ◽

pp. 1-35

Author(s):

Boubakr Nour ◽

Hakima Khelifi ◽

Rasheed Hussain ◽

Spyridon Mastorakis ◽

Hassine Moungla

Keyword(s):

Access Control ◽

Holistic Approach ◽

Future Internet ◽

Lessons Learned ◽

Future Research ◽

Communication Model ◽

Control Mechanisms ◽

Internet Communication ◽

Future Internet Architecture ◽

Comprehensive Survey

Information-Centric Networking (ICN) has recently emerged as a prominent candidate for the Future Internet Architecture (FIA) that addresses existing issues with the host-centric communication model of the current TCP/IP-based Internet. Named Data Networking (NDN) is one of the most recent and active ICN architectures that provides a clean-slate approach for Internet communication. NDN provides intrinsic content security where security is directly provided to the content instead of communication channel. Among other security aspects, Access Control (AC) rules specify the privileges for the entities that can access the content. In TCP/IP-based AC systems, due to the client-server communication model, the servers control which client can access a particular content. In contrast, ICN-based networks use content names to drive communication and decouple the content from its original location. This phenomenon leads to the loss of control over the content, causing different challenges for the realization of efficient AC mechanisms. To date, considerable efforts have been made to develop various AC mechanisms in NDN. In this article, we provide a detailed and comprehensive survey of the AC mechanisms in NDN. We follow a holistic approach towards AC in NDN where we first summarize the ICN paradigm, describe the changes from channel-based security to content-based security, and highlight different cryptographic algorithms and security protocols in NDN. We then classify the existing AC mechanisms into two main categories: Encryption-based AC and Encryption-independent AC . Each category has different classes based on the working principle of AC (e.g., Attribute-based AC, Name-based AC, Identity-based AC). Finally, we present the lessons learned from the existing AC mechanisms and identify the challenges of NDN-based AC at large, highlighting future research directions for the community.

Download Full-text

Use of Purpose and Role Based Access Control Mechanisms to Protect Data Within RDBMS

International Journal of Software Innovation ◽

10.4018/ijsi.2020010105 ◽

2020 ◽

Vol 8 (1) ◽

pp. 82-91

Author(s):

Suraj Krishna Patil ◽

Sandipkumar Chandrakant Sagare ◽

Alankar Shantaram Shelar

Keyword(s):

Access Control ◽

Privacy Preservation ◽

Original Data ◽

Sensitive Information ◽

Role Based Access Control ◽

Control Mechanisms ◽

Sensitive Data ◽

Access To Resources ◽

Key Factor ◽

Role Based

Privacy is the key factor to handle personal and sensitive data, which in large chunks, is stored by database management systems (DBMS). It provides tools and mechanisms to access and analyze data within it. Privacy preservation converts original data into some unknown form, thus protecting personal and sensitive information. Different access control mechanisms such as discretionary access control, mandatory access control is used in DBMS. However, they hardly consider purpose and role-based access control in DBMS, which incorporates policy specification and enforcement. The role based access control (RBAC) regulates the access to resources based on the roles of individual users. Purpose based access control (PuBAC) regulates the access to resources based on purpose for which data can be accessed. It regulates execution of queries based on purpose. The PuRBAC system uses the policies of both, i.e. PuBAC and RBAC, to enforce within RDBMS.

Download Full-text

From Cloud Computing to Fog Computing

International Journal of Fog Computing ◽

10.4018/ijfc.2018010101 ◽

2018 ◽

Vol 1 (1) ◽

pp. 1-14 ◽

Cited By ~ 5

Author(s):

Sanjay P. Ahuja ◽

Niharika Deval

Keyword(s):

Cloud Computing ◽

Fog Computing ◽

Cost Savings ◽

End Users ◽

Internet Technology ◽

Future Research ◽

Computing Paradigm ◽

Close Proximity ◽

Iot Devices ◽

Communication Control

This article describes how in recent years, Cloud Computing has emerged as a fundamental computing paradigm that has significantly changed the approach of enterprises as well as end users towards implementation of Internet technology. The key characteristics such as on-demand resource provision, scalability, rapid elasticity, higher flexibility, and significant cost savings have influenced enterprises of all sizes in the wide and successful adoption of Cloud Computing. Despite numerous advantages, Cloud Computing has its fair share of downsides as well. One of those major concerns is latency issues which has relevance to the Internet of Things (IoT). A new computing paradigm has been proposed by Cisco in early 2014 and termed 'Fog Computing'. Fog Computing otherwise known as Edge Computing is the integration of Cloud Computing and IoT. Being located in close proximity to the IoT devices, the Fog assists with latency requirements of IoT related applications. It also meets the data processing needs of IoT devices which are resource constrained by bringing computation, communication, control and storage closer to the end users. Clouds continue to offer support for data analytics. One can think of the IoT-Fog-Cloud as being part of a continuum. This article surveys the current literature on Fog Computing and provides a discussion on the background, details and architecture of Fog Computing, as well as the application areas of Fog Computing. The article concludes with some recommendations in the areas of future research.

Download Full-text

Framework for privacy preservation in iot through classification and access control mechanisms

2017 2nd International Conference for Convergence in Technology (I2CT) ◽

10.1109/i2ct.2017.8226166 ◽

2017 ◽

Cited By ~ 5

Author(s):

Neha Kaliya ◽

Muzzammil Hussain

Keyword(s):

Access Control ◽

Privacy Preservation ◽

Control Mechanisms

Download Full-text

From Cloud Computing to Fog Computing

Research Anthology on Architectures, Frameworks, and Integration Strategies for Distributed and Cloud Computing ◽

10.4018/978-1-7998-5339-8.ch047 ◽

2021 ◽

pp. 999-1010

Author(s):

Sanjay P. Ahuja ◽

Niharika Deval

Keyword(s):

Cloud Computing ◽

Fog Computing ◽

Cost Savings ◽

End Users ◽

Internet Technology ◽

Future Research ◽

Computing Paradigm ◽

Key Characteristics ◽

Iot Devices ◽

Communication Control

Download Full-text

A Survey on Privacy Preservation in Fog-Enabled Internet of Things

ACM Computing Surveys ◽

10.1145/3474554 ◽

2023 ◽

Vol 55 (1) ◽

pp. 1-39

Author(s):

Kinza Sarwar ◽

Sira Yongchareon ◽

Jian Yu ◽

Saeed Ur Rehman

Keyword(s):

Internet Of Things ◽

Data Privacy ◽

Privacy Preservation ◽

Fog Computing ◽

Future Research ◽

Bandwidth Utilization ◽

Ongoing Research ◽

Iot Applications ◽

Future Research Directions ◽

Privacy Risks

Despite the rapid growth and advancement in the Internet of Things (IoT ), there are critical challenges that need to be addressed before the full adoption of the IoT. Data privacy is one of the hurdles towards the adoption of IoT as there might be potential misuse of users’ data and their identity in IoT applications. Several researchers have proposed different approaches to reduce privacy risks. However, most of the existing solutions still suffer from various drawbacks, such as huge bandwidth utilization and network latency, heavyweight cryptosystems, and policies that are applied on sensor devices and in the cloud. To address these issues, fog computing has been introduced for IoT network edges providing low latency, computation, and storage services. In this survey, we comprehensively review and classify privacy requirements for an in-depth understanding of privacy implications in IoT applications. Based on the classification, we highlight ongoing research efforts and limitations of the existing privacy-preservation techniques and map the existing IoT schemes with Fog-enabled IoT schemes to elaborate on the benefits and improvements that Fog-enabled IoT can bring to preserve data privacy in IoT applications. Lastly, we enumerate key research challenges and point out future research directions.

Download Full-text

Blockchain-based trust management in cloud computing systems: a taxonomy, review and future directions

Journal of Cloud Computing Advances Systems and Applications ◽

10.1186/s13677-021-00247-5 ◽

2021 ◽

Vol 10 (1) ◽

Author(s):

Wenjuan Li ◽

Jiyi Wu ◽

Jian Cao ◽

Nan Chen ◽

Qifei Zhang ◽

...

Keyword(s):

Cloud Computing ◽

Trust Management ◽

Single Point ◽

Trust Model ◽

Future Research ◽

Computing Systems ◽

Transaction Model ◽

Computing Paradigm ◽

Operating Rules ◽

Key Factor

AbstractThrough virtualization and resource integration, cloud computing has expanded its service area and offers a better user experience than the traditional platforms, along with its business operation model bringing huge economic and social benefits. However, a large amount of evidence shows that cloud computing is facing with serious security and trust crisis, and building a trust-enabled transaction environment has become its key factor. The traditional cloud trust model usually adopts a centralized architecture, which causes large management overhead, network congestion and even single point of failure. Furthermore, due to a lack of transparency and traceability, trust evaluation results cannot be fully recognized by all participants. Blockchain is a new and promising decentralized framework and distributed computing paradigm. Its unique features in operating rules and traceability of records ensure the integrity, undeniability and security of the transaction data. Therefore, blockchain is very suitable for constructing a distributed and decentralized trust architecture. This paper carries out a comprehensive survey on blockchain-based trust approaches in cloud computing systems. Based on a novel cloud-edge trust management framework and a double-blockchain structure based cloud transaction model, it identifies the open challenges and gives directions for future research in this field.

Download Full-text

A Survey of Fog Computing-Based Healthcare Big Data Analytics and Its Security

International Journal of Ambient Computing and Intelligence ◽

10.4018/ijaci.2021040104 ◽

2021 ◽

Vol 12 (2) ◽

pp. 53-72

Author(s):

Rojalina Priyadarshini ◽

Rabindra Kumar Barik ◽

Harish Chandra Dubey ◽

Brojo Kishore Mishra

Keyword(s):

Big Data ◽

Data Processing ◽

Fog Computing ◽

Big Data Analytics ◽

Machine Intelligence ◽

Future Research ◽

Data Generation ◽

Local Data ◽

Research Areas ◽

Computing Paradigm

Growing use of wearables within internet of things (IoT) creates ever-increasing multi-modal data from various smart health applications. The enormous volume of data generation creates new challenges in transmission, storage, and processing. There were challenges such as communication latency and data security associated with processing medical big data in cloud backend. Fog computing (FC) is an emerging distributed computing paradigm that solved these problems by leveraging local data processing, storage, filtering, and machine intelligence within an intermediate fog layer that resides between cloud and wearables devices. This paper focuses on doing survey on two major aspects of deploying fog computing for smart and connected health. Firstly, the role of machine learning-based edge intelligence in fog layer for data processing is investigated. A comprehensive analysis is provided during the survey, highlighting the strength and improvements in the existing literature. The paper ends with some open challenges and future research areas in the domain of fog-based healthcare.

Download Full-text

Fog Computing and the Internet of Things: A Review

Big Data and Cognitive Computing ◽

10.3390/bdcc2020010 ◽

2018 ◽

Vol 2 (2) ◽

pp. 10 ◽

Cited By ~ 110

Author(s):

Hany Atlam ◽

Robert Walters ◽

Gary Wills

Keyword(s):

Internet Of Things ◽

Fog Computing ◽

Future Research ◽

Implementation Challenges ◽

Network Failure ◽

Iot Applications ◽

Computing Paradigm ◽

Future Research Directions ◽

Iot Devices ◽

Processing And Storage

With the rapid growth of Internet of Things (IoT) applications, the classic centralized cloud computing paradigm faces several challenges such as high latency, low capacity and network failure. To address these challenges, fog computing brings the cloud closer to IoT devices. The fog provides IoT data processing and storage locally at IoT devices instead of sending them to the cloud. In contrast to the cloud, the fog provides services with faster response and greater quality. Therefore, fog computing may be considered the best choice to enable the IoT to provide efficient and secure services for many IoT users. This paper presents the state-of-the-art of fog computing and its integration with the IoT by highlighting the benefits and implementation challenges. This review will also focus on the architecture of the fog and emerging IoT applications that will be improved by using the fog model. Finally, open issues and future research directions regarding fog computing and the IoT are discussed.

Download Full-text

Fog Computing and Its Challenges

The Rise of Fog Computing in the Digital Era - Advances in Computer and Electrical Engineering ◽

10.4018/978-1-5225-6070-8.ch002 ◽

2019 ◽

pp. 36-52

Author(s):

Vighnesh Srinivasa Balaji

Keyword(s):

Cloud Computing ◽

Fog Computing ◽

Service Level ◽

Future Research ◽

Research Directions ◽

Security Issues ◽

Computing Paradigm ◽

Future Research Directions ◽

Time Latency ◽

Iot Devices

In recent times, the number of internet of things (IoT) devices/sensors increased tremendously. To support the computational demand of real-time latency-sensitive applications of largely geo-distributed IoT devices/sensors, a new computing paradigm named fog computing has been introduced. In this chapter, the authors will introduce fog computing, its difference in comparison to cloud computing, and issues related to fog. Among the three issues (i.e. service, structural, and security issues), this chapter scrutinizes and comprehensively discusses the service and structural issues also providing the service level objectives of the fog. They next provide various algorithms for computing in fog, the challenges faced, and future research directions. Among the various uses of fog, two scenarios are put to use.

Download Full-text