A TRUST-BY-DESIGN FRAMEWORK FOR THE INTERNET OF THINGS

Size: px

Start display at page:

Download "A TRUST-BY-DESIGN FRAMEWORK FOR THE INTERNET OF THINGS"

Antonia Weaver
5 years ago
Views:

1 A TRUST-BY-DESIGN FRAMEWORK FOR THE INTERNET OF THINGS ESR3 - Davide Ferraris PhD University of Malaga, NICS lab Tutors: Prof. Javier Lopez, Dr. Carmen Fernandez Gago 1

2 Contents Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 2

3 Introduction Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 3

4 Trust Trust is difficult to define because: To believe that someone is good and honest and will not harm you, or that something is safe and reliable. Trustor and Trustee 4

Internet of Things 20.4 billions of devices will be connected by 2020 (https://www.

5 Internet of Things 20.4 billions of devices will be connected by 2020 ( Heterogeneity Dinamicity Communication Trust is needed 5

6 Architecture Framework Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 6

7 K Model 7

8 Context Always present Environment Services Properties (alone or composition) Dynamic 8

9 K Model 9

10 Need Characteristics of trust Type of Architecture Protocols 10

11 K Model 11

12 Requirements IEEE specification 12

13 Requirement Specification 13

14 K Model 14

15 Model SysML Trust Models o Evaluation o Decision 15

16 K Model 16

17 Development Top Down approach Bottom Up approach Depending on the previous and following phases Core of the framework Developer centric approach 17

18 K Model 18

19 Verification Check if the entity has been built right Verification of the functionalities Verification of the requirements related to the system Developer point of view Intermediate product 19

20 K Model 20

21 Validation Check if the right entity has been built The need must be met Validation of the requirements related to Real system environment Customer point of view Final product 21

22 K Model 22

23 Utilization Dynamicity of IoT must face with devices that (Join, Stay, Leave) the System 23

24 K Model (links) 24

25 Architecture Framework Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 25

26 Transversal Activities Documentation Metrics Decision Gates Traceability Threat Analysis Risk Management Decision-Making 26

27 Documentation Connection Justification Procedures Guide Verba volant, scripta manent 27

28 Metrics Trust Metrics Performance Efficiency Measures 28

29 Decision Gates They permit to move between phases Back-Up in case something goes wrong 29

30 Traceability Connection between o Phases o Requirements o Activities and Phases Control Domino effects Help against Unintended Consequences 30

31 Threat Analysis Attacks o Internal o External Malfunctions Malwares 31

32 Risk Management Likelihood Severity Detectability 32

33 Decision Making Connected to many phases o Requirement o Model o Development o Utilization 33

34 Use Case Scenario Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 34

35 Smart Cake Machine Smart Hub Smart Supermarke t Smart Fridge Smart Cake Machine 35

36 Smart Cake Machine Context o Smart Home o Trusted Smart entities Need o Smart Cake Machine Requirements o Security Requirement o Trust Requirement o Usability Requirement Models o Trusted ClassDiagram o Trusted RequirementDiagram 36

37 Smart Cake Machine Development o Top Down Verification o Verify the correct functionalities of the Smart Cake Machine Validation o Validate it in the cooperation with Smart Fridge and Smart Supermarkets Utilization o Join the Smart Home o Deal with join and leaving Smart devices 37

38 Conclusion Introduction o Trust o Internet of Things Architecture Framework o K Model o Transversal Activities Use Case Scenario Conclusion 38

39 Conclusion IoT has brought new security challenges Trust as a key Software, Security and System Engineering approach to ensure trust in an entity Trust and other security properties are included in the whole life cycle K-Model Transversal Activities 39

40 Future Work Validation of the Framework We will expand the phases of the framework Application to a real complex IoT scenario Application in an IoT System 40

research and innovation programme under the Marie Sklodowska-Curie grant

41 Questions? Thanks to the European Commission, NeCS Project and to the university of Malaga for the opportunity given to me. This project has received funding from the European Union s Horizon 2020 research and innovation programme under the Marie Sklodowska-Curie grant agreement No This work reflects only the author s view and the Research Executive Agency is not responsible for any use that may be made of the information it contains. 41

(Project Number ) SecSoN Workshop, ACM SIGCOMM 2018 Budapest, 24 August Mike Surridge, University of Southampton IT Innovation Centre

(Project Number ) SecSoN Workshop, ACM SIGCOMM 2018 Budapest, 24 August Mike Surridge, University of Southampton IT Innovation Centre 5G-ENSURE (Project Number 671562) Trust Modelling in 5G Networks SecSoN Workshop, ACM SIGCOMM 2018 Budapest, 24 August 2018 Mike Surridge, University of Southampton IT Innovation Centre ms _at_ it-innovation.soton.ac.uk