Title: Enforcement of Security Policy Rules for the Internet of Things
Citation: 2014 IEEE 10th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob 2014) p. 165-172
Publisher: Institute of Electrical and Electronics Engineers - IEEE
Publication Year: 2014
JRC N°: JRC91395
ISBN: 978-1-4799-5041-6
URI: http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=6962166
DOI: 10.1109/WiMOB.2014.6962166
Type: Articles in periodicals and books
Abstract: According to the European Union data protection legislation, privacy is a fundamental right that should be protected in the interaction of the citizen with the digital world. In the evolution of Internet towards new paradigms like Internet of Things (IoT), protection of privacy can be a challenging task because IoT connected objects can generate an enormous amount of data, some of which actually constitute personal data. In addition, it is difficult to control the flow of data when there is no user interface or adequate tools for the user. In this paper we describe an efficient solution to enforcement security policy rules that addresses this challenge, and takes a more general enterprise architecture approach for security and privacy engineering in IoT. This enforcement solution is based on a Model-based Security Toolkit named SecKit, and its integration with the MQ Telemetry Transport (MQTT) protocol layer, which is a widely adopted technology to enable the communication between IoT devices. In this paper, we describe the motivation and design of our enforcement solution, demonstrating its feasibility and the performance results in a case study.
JRC Directorate:Space, Security and Migration

Files in This Item:
There are no files associated with this item.

Items in repository are protected by copyright, with all rights reserved, unless otherwise indicated.