State-of-the-Art Software-Based Remote Attestation: Opportunities and Open Issues for Internet of Things

The Internet of Things (IoT) ecosystem comprises billions of heterogeneous Internet-connected devices which are revolutionizing many domains, such as healthcare, transportation, smart cities, to mention only a few. Along with the unprecedented new opportunities, the IoT revolution is creating an enormous attack surface for potential sophisticated cyber attacks. In this context, Remote Attestation (RA) has gained wide interest as an important security technique to remotely detect adversarial presence and assure the legitimate state of an IoT device. While many RA approaches proposed in the literature make different assumptions regarding the architecture of IoT devices and adversary capabilities, most typical RA schemes rely on minimal Root of Trust by leveraging hardware that guarantees code and memory isolation. However, the presence of a specialized hardware is not always a realistic assumption, for instance, in the context of legacy IoT devices and resource-constrained IoT devices. In this paper, we survey and analyze existing software-based RA schemes (i.e., RA schemes not relying on specialized hardware components) through the lens of IoT. In particular, we provide a comprehensive overview of their design characteristics and security capabilities, analyzing their advantages and disadvantages. Finally, we discuss the opportunities that these RA schemes bring in attesting legacy and resource-constrained IoT devices, along with open research issues.

Download Full-text

A Comprehensive and Systematic Survey on the Internet of Things: Security and Privacy Challenges, Security Frameworks, Enabling Technologies, Threats, Vulnerabilities and Countermeasures

Computers ◽

10.3390/computers9020044 ◽

2020 ◽

Vol 9 (2) ◽

pp. 44 ◽

Cited By ~ 2

Author(s):

Muath A. Obaidat ◽

Suhaib Obeidat ◽

Jennifer Holst ◽

Abdullah Al Hayajneh ◽

Joseph Brown

Keyword(s):

Internet Of Things ◽

Cyber Attacks ◽

Security And Privacy ◽

The Internet ◽

Comprehensive Overview ◽

Architecture Model ◽

Research Areas ◽

Iot Devices ◽

The Impact ◽

The Internet Of Things

The Internet of Things (IoT) has experienced constant growth in the number of devices deployed and the range of applications in which such devices are used. They vary widely in size, computational power, capacity storage, and energy. The explosive growth and integration of IoT in different domains and areas of our daily lives has created an Internet of Vulnerabilities (IoV). In the rush to build and implement IoT devices, security and privacy have not been adequately addressed. IoT devices, many of which are highly constrained, are vulnerable to cyber attacks, which threaten the security and privacy of users and systems. This survey provides a comprehensive overview of IoT in regard to areas of application, security architecture frameworks, recent security and privacy issues in IoT, as well as a review of recent similar studies on IoT security and privacy. In addition, the paper presents a comprehensive taxonomy of attacks on IoT based on the three-layer architecture model; perception, network, and application layers, as well as a suggestion of the impact of these attacks on CIA objectives in representative devices, are presented. Moreover, the study proposes mitigations and countermeasures, taking a multi-faceted approach rather than a per layer approach. Open research areas are also covered to provide researchers with the most recent research urgent questions in regard to securing IoT ecosystem.

Download Full-text

Robust Networking: Dynamic Topology Evolution Learning for Internet of Things

ACM Transactions on Sensor Networks ◽

10.1145/3446937 ◽

2021 ◽

Vol 17 (3) ◽

pp. 1-23

Author(s):

Ning Chen ◽

Tie Qiu ◽

Mahmoud Daneshmand ◽

Dapeng Oliver Wu

Keyword(s):

Internet Of Things ◽

Smart Cities ◽

Evolutionary Process ◽

Small Error ◽

Cyber Attacks ◽

Communication Capacity ◽

Error Ratio ◽

The Internet Of Things ◽

Evolution Learning

The Internet of Things (IoT) has been extensively deployed in smart cities. However, with the expanding scale of networking, the failure of some nodes in the network severely affects the communication capacity of IoT applications. Therefore, researchers pay attention to improving communication capacity caused by network failures for applications that require high quality of services (QoS). Furthermore, the robustness of network topology is an important metric to measure the network communication capacity and the ability to resist the cyber-attacks induced by some failed nodes. While some algorithms have been proposed to enhance the robustness of IoT topologies, they are characterized by large computation overhead, and lacking a lightweight topology optimization model. To address this problem, we first propose a novel robustness optimization using evolution learning (ROEL) with a neural network. ROEL dynamically optimizes the IoT topology and intelligently prospects the robust degree in the process of evolutionary optimization. The experimental results demonstrate that ROEL can represent the evolutionary process of IoT topologies, and the prediction accuracy of network robustness is satisfactory with a small error ratio. Our algorithm has a better tolerance capacity in terms of resistance to random attacks and malicious attacks compared with other algorithms.

Download Full-text

CloudEyes: Cloud-based malware detection with reversible sketch for resource-constrained internet of things (IoT) devices

Software Practice and Experience ◽

10.1002/spe.2420 ◽

2016 ◽

Vol 47 (3) ◽

pp. 421-441 ◽

Cited By ~ 29

Author(s):

Hao Sun ◽

Xiaofeng Wang ◽

Rajkumar Buyya ◽

Jinshu Su

Keyword(s):

Internet Of Things ◽

Malware Detection ◽

Resource Constrained ◽

Iot Devices

Download Full-text

An IoT-Based Network for Smart Urbanization

Wireless Communications and Mobile Computing ◽

10.1155/2021/5584667 ◽

2021 ◽

Vol 2021 ◽

pp. 1-14

Author(s):

Sabeeh Ahmad Saeed ◽

Farrukh Zeeshan Khan ◽

Zeshan Iqbal ◽

Roobaea Alroobaea ◽

Muneer Ahmad ◽

...

Keyword(s):

Developing Countries ◽

Data Structure ◽

Internet Of Things ◽

Information Exchange ◽

Smart Cities ◽

Sensor Nodes ◽

Sink Node ◽

Process Data ◽

Data Format ◽

Iot Devices

Internet of Things (IoT) is considered one of the world’s ruling technologies. Billions of IoT devices connected together through IoT forming smart cities. As the concept grows, it is very challenging to design an infrastructure that is capable of handling large number of devices and process data effectively in a smart city paradigm. This paper proposed a structure for smart cities. It is implemented using a lightweight easy to implement network design and a simpler data format for information exchange that is suitable for developing countries like Pakistan. Using MQTT as network protocol, different sensor nodes were deployed for collecting data from the environment. Environmental factors like temperature, moisture, humidity, and percentage of CO2 and methane gas were recorded and transferred to sink node for information sharing over the IoT cloud using an MQTT broker that can be accessed any time using Mosquitto client. The experiment results provide the performance analysis of the proposed network at different QoS levels for the MQTT protocol for IoT-based smart cities. JSON structure is used to formulate the communication data structure for the proposed system.

Download Full-text

Enhanced Bandwidth Allocation Technique and Protocol Standards to Improve QoS in Internet of Things

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.a9164.119119 ◽

2019 ◽

Vol 9 (1) ◽

pp. 3246-3251

Keyword(s):

Internet Of Things ◽

Bandwidth Allocation ◽

Smart Cities ◽

Vital Role ◽

Healthcare Education ◽

Business Opportunities ◽

Iot Devices ◽

Network Technologies ◽

Dynamic Bandwidth

Internet of Things (IoT) is efficiently plays vital role in development of several sectors by offering many opportunities to grow the economy and improve the life standard through connecting billions of “Things” which provides business opportunities in different sectors and encounter many technical and application challenges. This paper emphasizes the role of Dynamic bandwidth allocation and protocols standards in various IoT sectors such as healthcare, education, agriculture, industrial, transportation, smart cities etc., and focuses on the challenges in providing uninterrupted bandwidth to all IoT devices with existing infrastructure, which depends on standardized protocols and network devices to establish connection with heterogeneous IoT devices. This paper covers Enhanced Dynamic Bandwidth Techniques, protocol standards and policies in IoT network technologies to Improve QoS in IoT devices.

Download Full-text

Internet of Things: A Comprehensive Study on Machine Learning-based Intrusion Detection approaches

10.21467/proceedings.114.29 ◽

2021 ◽

Author(s):

Priyanka Gupta ◽

Lokesh Yadav ◽

Deepak Singh Tomar

Keyword(s):

Machine Learning ◽

Internet Of Things ◽

Intrusion Detection ◽

Real Time ◽

Detection System ◽

Research Work ◽

Security And Privacy ◽

Iot Security ◽

Advantages And Disadvantages ◽

Iot Devices

The Internet of Things (IoT) connects billions of interconnected devices that can exchange information with each other with minimal user intervention. The goal of IoT to become accessible to anyone, anytime, and anywhere. IoT has engaged in multiple fields, including education, healthcare, businesses, and smart home. Security and privacy issues have been significant obstacles to the widespread adoption of IoT. IoT devices cannot be entirely secure from threats; detecting attacks in real-time is essential for securing devices. In the real-time communication domain and especially in IoT, security and protection are the major issues. The resource-constrained nature of IoT devices makes traditional security techniques difficult. In this paper, the research work carried out in IoT Intrusion Detection System is presented. The Machine learning methods are explored to provide an effective security solution for IoT Intrusion Detection systems. Then discussed the advantages and disadvantages of the selected methodology. Further, the datasets used in IoT security are also discussed. Finally, the examination of the open issues and directions for future trends are also provided.

Download Full-text

ABSAC: Attribute-Based Access Control Model Supporting Anonymous Access for Smart Cities

Security and Communication Networks ◽

10.1155/2021/5531369 ◽

2021 ◽

Vol 2021 ◽

pp. 1-11

Author(s):

Runnan Zhang ◽

Gang Liu ◽

Shancang Li ◽

Yongheng Wei ◽

Quan Wang

Keyword(s):

Internet Of Things ◽

Access Control ◽

Private Information ◽

Smart Cities ◽

Control Model ◽

User Privacy ◽

Access Control Models ◽

The Subject ◽

Attribute Based Access Control ◽

Iot Devices

Smart cities require new access control models for Internet of Things (IoT) devices that preserve user privacy while guaranteeing scalability and efficiency. Researchers believe that anonymous access can protect the private information even if the private information is not stored in authorization organization. Many attribute-based access control (ABAC) models that support anonymous access expose the attributes of the subject to the authorization organization during the authorization process, which allows the authorization organization to obtain the attributes of the subject and infer the identity of the subject. The ABAC with anonymous access proposed in this paper called ABSAC strengthens the identity-less of ABAC by combining homomorphic attribute-based signatures (HABSs) which does not send the subject attributes to the authorization organization, reducing the risk of subject identity re-identification. It is a secure anonymous access framework. Tests show that the performance of ABSAC implementation is similar to ABAC’s performance.

Download Full-text

Deep Cybersecurity: A Comprehensive Overview from Neural Network and Deep Learning Perspective

10.20944/preprints202102.0340.v1 ◽

2021 ◽

Author(s):

Iqbal H. Sarker

Keyword(s):

Neural Network ◽

Deep Learning ◽

Short Term Memory ◽

Denial Of Service ◽

Cyber Attacks ◽

Self Organizing Map ◽

Comprehensive Overview ◽

Generative Adversarial Network ◽

Research Issues ◽

Learning Techniques

Deep learning (DL), which is originated from an artificial neural network (ANN), is one of the major technologies of today's smart cybersecurity systems or policies to function in an intelligent manner. Popular deep learning techniques, such as Multi-layer Perceptron (MLP), Convolutional Neural Network (CNN or ConvNet), Recurrent Neural Network (RNN) or Long Short-Term Memory (LSTM), Self-organizing Map (SOM), Auto-Encoder (AE), Restricted Boltzmann Machine (RBM), Deep Belief Networks (DBN), Generative Adversarial Network (GAN), Deep Transfer Learning (DTL or Deep TL), Deep Reinforcement Learning (DRL or Deep RL), or their ensembles and hybrid approaches can be used to intelligently tackle the diverse cybersecurity issues. In this paper, we aim to present a comprehensive overview from the perspective of these neural networks and deep learning techniques according to today's diverse needs. We also discuss the applicability of these techniques in various cybersecurity tasks such as intrusion detection, identification of malware or botnets, phishing, predicting cyber-attacks, e.g. denial of service (DoS), fraud detection or cyber-anomalies, etc. Finally, we highlight several research issues and future directions within the scope of our study in the field. Overall, the ultimate goal of this paper is to serve as a reference point and guidelines for the academia and professionals in the cyber industries, especially from the deep learning point of view.

Download Full-text

Automatic Failure Recovery for Container-Based IoT Edge Applications

Electronics ◽

10.3390/electronics10233047 ◽

2021 ◽

Vol 10 (23) ◽

pp. 3047

Author(s):

Kolade Olorunnife ◽

Kevin Lee ◽

Jonathan Kua

Keyword(s):

Internet Of Things ◽

Smart Cities ◽

Smart Homes ◽

Edge Computing ◽

Failure Recovery ◽

Software Failures ◽

Iot Applications ◽

Remote Management ◽

Management Ability ◽

Iot Devices

Recent years have seen the rapid adoption of Internet of Things (IoT) technologies, where billions of physical devices are interconnected to provide data sensing, computing and actuating capabilities. IoT-based systems have been extensively deployed across various sectors, such as smart homes, smart cities, smart transport, smart logistics and so forth. Newer paradigms such as edge computing are developed to facilitate computation and data intelligence to be performed closer to IoT devices, hence reducing latency for time-sensitive tasks. However, IoT applications are increasingly being deployed in remote and difficult to reach areas for edge computing scenarios. These deployment locations make upgrading application and dealing with software failures difficult. IoT applications are also increasingly being deployed as containers which offer increased remote management ability but are more complex to configure. This paper proposes an approach for effectively managing, updating and re-configuring container-based IoT software as efficiently, scalably and reliably as possible with minimal downtime upon the detection of software failures. The approach is evaluated using docker container-based IoT application deployments in an edge computing scenario.

Download Full-text

A Novel Combination of Distributed Ledger Technologies on Internet of Things: Use Case on Precision Agriculture

Applied System Innovation ◽

10.3390/asi2030030 ◽

2019 ◽

Vol 2 (3) ◽

pp. 30

Author(s):

Odysseas Lamtzidis ◽

Dennis Pettas ◽

John Gialelis

Keyword(s):

Internet Of Things ◽

Precision Agriculture ◽

Field Data ◽

Smart Cities ◽

Data Integrity ◽

Intelligent Decision Making ◽

Distributed Ledger ◽

Super Node ◽

Iot Devices ◽

Open Source Communities

Internet-of-Things (IoT) is an enabling technology for numerous initiatives worldwide such as manufacturing, smart cities, precision agriculture, and eHealth. The massive field data aggregation of distributed administered IoT devices allows new insights and actionable information for dynamic intelligent decision-making. In such distributed environments, data integrity, referring to reliability and consistency, is deemed insufficient and requires immediate facilitation. In this article, we introduce a distributed ledger (DLT)-based system for ensuring IoT data integrity which securely processes the aggregated field data. Its uniqueness lies in the embedded use of IOTA’s ledger, called “The Tangle”, used to transmit and store the data. Our approach shifts from a cloud-centric IoT system, where the Super nodes simply aggregate and push data to the cloud, to a node-centric system, where each Super node owns the data pushed in a distributed and decentralized database (i.e., the Tangle). The backend serves as a consumer of data and a provider of additional resources, such as administration panel, analytics, data marketplace, etc. The proposed implementation is highly modularand constitutes a significant contribution to the Open Source communities, regarding blockchain and IoT.

Download Full-text