Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An AAA Solution for Securing Industrial IoT Devices using Next Generation Access Control
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0003-0754-3799
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0003-3874-9968
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0001-9586-0991
Show others and affiliations
2018 (English)Conference paper, Published paper (Refereed)
Abstract [en]

Industry 4.0 is advancing the use of Internet of Things (IoT) devices in industrial applications, which enablesefficient device-to-device (D2D) communication. However, these devices are often heterogeneous in nature, i.e. from different manufacturers, use different protocols, etc. and adds requirements such as security, interoperability, etc.To address these requirements, the Service-Oriented Architecture-Based (SOA) Arrowhead Framework was previously proposed using the concept of local clouds. These local clouds provide a set of mandatory and support core systems to enable industrial automation applications. One of these mandatory core systems is an Authentication, Authorisationand Accounting (AAA) system, which is used to authenticate and provide access control to the devices in a local cloud. In an industrial context, with multiple stakeholders, the AAA mustsupport fine-grain access control. For example, in a distributed control loop, a controller should only have read access to its sensor such as a flow meter and write access to its actuator, such as a valve. The controller should not have access to anyother information besides what is needed to implement the desired functionality. In this work, an NGAC-based AAA solution to achieve fine-grain service level access control between IoT devices has been proposed and implemented. The solution is presented using a district heating use case.

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers (IEEE), 2018. p. 737-742
National Category
Embedded Systems Other Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Embedded Systems; Industrial Electronics
Identifiers
URN: urn:nbn:se:ltu:diva-69313DOI: 10.1109/ICPHYS.2018.8390799Scopus ID: 2-s2.0-85050142256ISBN: 9781538665312 (electronic)OAI: oai:DiVA.org:ltu-69313DiVA, id: diva2:1216264
Conference
1st IEEE International Conference on Industrial Cyber-Physical Systems, ICPS 2018, ITMO University, Saint Petersburg, Russian Federation, 15-18 May 2018
Projects
Productive 4.0OPTi Optimisation of District Heating Cooling systems, OPTi
Funder
EU, Horizon 2020, 649796Available from: 2018-06-11 Created: 2018-06-11 Last updated: 2019-05-06Bibliographically approved
In thesis
1. Architectural approach for Autonomous System of Systems Interoperability
Open this publication in new window or tab >>Architectural approach for Autonomous System of Systems Interoperability
2019 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

The current technological environment is evolving increasingly fast, and the development of new devices, technologies, and architectures has opened an emergent era where the digital and physical world work together. The implementation and use of systems based on a service-oriented architecture (SOA) in conjunction with the Internet of Things (IoT) and cyberphysical systems (CPS) have been extended during the last decades in numerous scenarios in industry and other domains. However, some of the major barriers to this approach are the lack of interoperability and the amount of engineering effort required for their integration.

 

The research presented in this thesis targets issues related to digitalization and automation. It is framed by the Industry 4.0 paradigm, which promotes the rise of efficiency and sustainability on industrial production. The interoperability between heterogeneous systems and different domains is one of the main challenges of Industry 4.0. The quest for solutions that help to increase interoperability is an important part of this research.

 

This thesis proposes a set of architectural design principles and tools in order to reduce engineering effort by means of finding solutions that enable autonomous integration and increase interoperability without human intervention. The research is focused on the IoT field, taking into account resource-constrained devices, system of systems integration, and data models.

 

A detailed investigation of various interoperability mismatch problems is presented in this thesis. The proposed solution is an adapter system that can aid in the generation of new service consumer interfaces at both compile-time and run-time. The proposed approach requires a new point of view in the service description field that can provide a holistic description of the information required for the generation of consumer interfaces.

In addition, aspects related to interoperability, such as the multiple IoT frameworks in the current market, naming conventions, syntactic modeling and translation, and security, are also partially analyzed.

 

On a separate track, service composition in resource-constrained devices

 is analyzed in terms of latency, using the orchestration provided by the Arrowhead Framework.

Place, publisher, year, edition, pages
Luleå, Sweden: Luleå University of Technology, 2019
Series
Licentiate thesis / Luleå University of Technology, ISSN 1402-1757
Keywords
Internet of Things (IoT), System of Systems (SoS), interoperability and SOA
National Category
Other Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Industrial Electronics
Identifiers
urn:nbn:se:ltu:diva-73743 (URN)978-91-7790-374-1 (ISBN)978-91-7790-375-8 (ISBN)
Presentation
2019-06-19, Auditorium, Luleå tekniska universitet, Luleå, 13:30 (English)
Opponent
Supervisors
Available from: 2019-04-25 Created: 2019-04-24 Last updated: 2019-06-14Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records BETA

van Deventer, JanEliasson, JensDelsing, Jerker

Search in DiVA

By author/editor
Kolluru, Katyayani KiranmayeePaniagua, Cristinavan Deventer, JanEliasson, JensDelsing, Jerker
By organisation
Embedded Internet Systems Lab
Embedded SystemsOther Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 201 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf