ABSTRACT
With Internet of Things (IoT) middleware solutions moving towards cloud computing, the problems of trust in cloud platforms and data privacy need to be solved. The emergence of Trusted Execution Environments (TEEs) opens new perspectives to increase security in cloud applications. We propose a privacy-preserving IoT middleware, using Intel Software Guard Extensions (SGX) to create a secure system on untrusted platforms. An encrypted index is used as a database and communication with the application is protected using asymmetric encryption. This set of measures allows our system to process events in an orchestration engine without revealing data to the hosting cloud platform.
- Alessio Botta, Walter De Donato, Valerio Persico, and Antonio Pescapé. 2016. Integration of cloud computing and internet of things: a survey. Future Generation Computer Systems 56 (2016), 684--700. Google ScholarDigital Library
- Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan. 2011. CryptDB: Protecting Confidentiality with Encrypted Query Processing. In Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles (SOSP '11). ACM, New York, NY, USA, 85--100. Google ScholarDigital Library
- Felix Schuster, Manuel Costa, Cédric Fournet, Christos Gkantsidis, Marcus Peinado, Gloria Mainar-Ruiz, and Mark Russinovich. 2015. VC3: Trustworthy data analytics in the cloud using SGX. In Security and Privacy (SP), 2015 IEEE Symposium on. IEEE, 38--54. Google ScholarDigital Library
- Hossein Shafagh, Anwar Hithnawi, Andreas Droescher, Simon Duquennoy, and Wen Hu. 2015. Talos: Encrypted Query Processing for the Internet of Things. In Proceedings of the 13th ACM Conference on Embedded Networked Sensor Systems (SenSys '15). ACM, New York, NY, USA, 197--210. Google ScholarDigital Library
- Sabrina Sicari, Alessandra Rizzardi, Luigi Alfredo Grieco, and Alberto Coen-Porisini. 2015. Security, privacy and trust in Internet of Things: The road ahead. Computer Networks 76 (2015), 146--164. Google ScholarDigital Library
- Zheng Yan, Peng Zhang, and Athanasios V Vasilakos. 2014. A survey on trust management for Internet of Things. Journal of network and computer applications 42 (2014), 120--134.Google ScholarCross Ref
Recommendations
Privacy-Preserving IoT Cloud Data Processing Using SGX
IoT '19: Proceedings of the 9th International Conference on the Internet of ThingsThis paper describes a privacy-aware ecosystem for the Internet of Things (IoT) in cloud environment. Using Intel Software Guard Extensions (SGX) technology, we present an IoT middleware solution suitable for deployment on untrusted platforms, with ...
Secure IoT Stream Data Management and Analytics with Intel SGX
SafeConfig '17: Proceedings of the 2017 Workshop on Automated Decision Making for Active Cyber DefenseData streams from numerous Internet of Things (IoT) devices, such as medical, home and personal systems, may contain sensitive and confidential information that may need protection against attacks from external adversaries. Beyond addressing challenges ...
Modelling IoT Application Requirements for Benchmarking IoT Middleware Platforms
iiWAS2021: The 23rd International Conference on Information Integration and Web IntelligenceThe significant advances in the Internet of Things (IoT) have led to IoT applications being widely used in various scenarios ranging from smart city, smart farming, to Industrial IoT (IIoT) solutions. With the explosion of IoT application development, ...
Comments