Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An AAA Solution for Securing Industrial IoT Devices using Next Generation Access Control
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0003-0754-3799
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0002-9412-6872
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0003-3874-9968
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0001-9586-0991
Show others and affiliations
2018 (English)Conference paper, Published paper (Refereed)
Abstract [en]

Industry 4.0 is advancing the use of Internet of Things (IoT) devices in industrial applications, which enablesefficient device-to-device (D2D) communication. However, these devices are often heterogeneous in nature, i.e. from different manufacturers, use different protocols, etc. and adds requirements such as security, interoperability, etc.To address these requirements, the Service-Oriented Architecture-Based (SOA) Arrowhead Framework was previously proposed using the concept of local clouds. These local clouds provide a set of mandatory and support core systems to enable industrial automation applications. One of these mandatory core systems is an Authentication, Authorisationand Accounting (AAA) system, which is used to authenticate and provide access control to the devices in a local cloud. In an industrial context, with multiple stakeholders, the AAA mustsupport fine-grain access control. For example, in a distributed control loop, a controller should only have read access to its sensor such as a flow meter and write access to its actuator, such as a valve. The controller should not have access to anyother information besides what is needed to implement the desired functionality. In this work, an NGAC-based AAA solution to achieve fine-grain service level access control between IoT devices has been proposed and implemented. The solution is presented using a district heating use case.

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers (IEEE), 2018. p. 737-742
National Category
Embedded Systems Other Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Embedded Systems; Industrial Electronics
Identifiers
URN: urn:nbn:se:ltu:diva-69313DOI: 10.1109/ICPHYS.2018.8390799Scopus ID: 2-s2.0-85050142256ISBN: 9781538665312 (electronic)OAI: oai:DiVA.org:ltu-69313DiVA, id: diva2:1216264
Conference
1st IEEE International Conference on Industrial Cyber-Physical Systems, ICPS 2018, ITMO University, Saint Petersburg, Russian Federation, 15-18 May 2018
Projects
Productive 4.0OPTi Optimisation of District Heating Cooling systems, OPTi
Funder
EU, Horizon 2020, 649796Available from: 2018-06-11 Created: 2018-06-11 Last updated: 2021-10-15Bibliographically approved
In thesis
1. Architectural approach for Autonomous System of Systems Interoperability
Open this publication in new window or tab >>Architectural approach for Autonomous System of Systems Interoperability
2019 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

The current technological environment is evolving increasingly fast, and the development of new devices, technologies, and architectures has opened an emergent era where the digital and physical world work together. The implementation and use of systems based on a service-oriented architecture (SOA) in conjunction with the Internet of Things (IoT) and cyberphysical systems (CPS) have been extended during the last decades in numerous scenarios in industry and other domains. However, some of the major barriers to this approach are the lack of interoperability and the amount of engineering effort required for their integration.

 

The research presented in this thesis targets issues related to digitalization and automation. It is framed by the Industry 4.0 paradigm, which promotes the rise of efficiency and sustainability on industrial production. The interoperability between heterogeneous systems and different domains is one of the main challenges of Industry 4.0. The quest for solutions that help to increase interoperability is an important part of this research.

 

This thesis proposes a set of architectural design principles and tools in order to reduce engineering effort by means of finding solutions that enable autonomous integration and increase interoperability without human intervention. The research is focused on the IoT field, taking into account resource-constrained devices, system of systems integration, and data models.

 

A detailed investigation of various interoperability mismatch problems is presented in this thesis. The proposed solution is an adapter system that can aid in the generation of new service consumer interfaces at both compile-time and run-time. The proposed approach requires a new point of view in the service description field that can provide a holistic description of the information required for the generation of consumer interfaces.

In addition, aspects related to interoperability, such as the multiple IoT frameworks in the current market, naming conventions, syntactic modeling and translation, and security, are also partially analyzed.

 

On a separate track, service composition in resource-constrained devices

 is analyzed in terms of latency, using the orchestration provided by the Arrowhead Framework.

Place, publisher, year, edition, pages
Luleå, Sweden: Luleå University of Technology, 2019
Series
Licentiate thesis / Luleå University of Technology, ISSN 1402-1757
Keywords
Internet of Things (IoT), System of Systems (SoS), interoperability and SOA
National Category
Other Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Industrial Electronics
Identifiers
urn:nbn:se:ltu:diva-73743 (URN)978-91-7790-374-1 (ISBN)978-91-7790-375-8 (ISBN)
Presentation
2019-06-19, Auditorium, Luleå tekniska universitet, Luleå, 13:30 (English)
Opponent
Supervisors
Available from: 2019-04-25 Created: 2019-04-24 Last updated: 2023-09-04Bibliographically approved
2. Autonomous Runtime System of Systems Interoperability
Open this publication in new window or tab >>Autonomous Runtime System of Systems Interoperability
2020 (English)Doctoral thesis, comprehensive summary (Other academic)
Abstract [en]

The current technological environment is evolving increasingly fast, and the development of new devices, technologies, and architectures has opened an emergent paradigm where the digital and physical world work together, leading to a new digitalizacion era.

For the industry, the shift of paradigm represents the start of the fourth industrial revolution, also called Industry 4.0. The Industry 4.0 approach contributes to addressing continuously evolving industrial requirements, and promotes the rise of efficiency and sustainability on industrial production. The implementation and use of systems based on a Service Oriented Architecture (SOA) in conjunction with the Internet of Things (IoT) and Cyber-Physical Systems (CPS) into System of Systems (SoS) have been extended during the last decades in numerous scenarios contributing to reach the Industry 4.0 vision.

The new industrial paradigm leads to growing complexity, thus, potentially increasing the development and maintenance costs. Significant engineering time is dedicated to the integration and interoperability of different components. Therefore, one of the major barriers to this approach is the lack of interoperability between heterogeneous systems.

This thesis proposes a set of architectural design principles and tools in order to reduce engineering effort by means of finding solutions that enable autonomous integration and increase interoperability without human intervention. The research is focused on the SoS field, taking service definition and SoS integration into account.

The presented solution is an service contract translation system that can aid in the generation of new service consumer interfaces at both compile time and runtime. The proposed approach requires a new point of view in the service contract that can provide a holistic description of the information required for the generation of consumer interfaces. The proposed system makes use of service interface descriptions to dynamically instantiate a new autonomously generated interface that solves communication mismatches between the provider and the consumer. To illustrate the potential of this approach, a prototype of the system has been implemented and tested

In addition, aspects related to interoperability, such as the many IoT frameworks in the current market, naming conventions, syntactic modeling and translation, and security, are also partially analyzed.

Place, publisher, year, edition, pages
Luleå: Luleå University of Technology, 2020. p. 264
Series
Doctoral thesis / Luleå University of Technology 1 jan 1997 → …, ISSN 1402-1544
Keywords
SOA, SoS, Interoperability, code generation, automation, Arrowhead Framework
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Cyber-Physical Systems
Identifiers
urn:nbn:se:ltu:diva-80857 (URN)978-91-7790-659-9 (ISBN)978-91-7790-660-5 (ISBN)
Public defence
2020-11-19, A1547, Building A, Luleå, 10:00 (English)
Opponent
Supervisors
Available from: 2020-09-21 Created: 2020-09-21 Last updated: 2023-09-05Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Kolluru, Katyayani KiranmayeePaniagua, Cristinavan Deventer, JanEliasson, JensDelsing, Jerker

Search in DiVA

By author/editor
Kolluru, Katyayani KiranmayeePaniagua, Cristinavan Deventer, JanEliasson, JensDelsing, Jerker
By organisation
Embedded Internet Systems Lab
Embedded SystemsOther Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 902 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf