Advanced Security Considerations in the Arrowhead Framework

The Arrowhead Framework aims to create collaborative automation using networked embedded devices by establishing a service oriented approach to govern them. Various cyber-physical Systems can provide and consume Services from one another in closed automation clouds. These System-of-Systems has been introduced by the Arrowhead framework as Local Clouds. These clouds – being high value targets – can then be subject to an extensive amount of threats. This paper is dedicated towards revising the Arrowhead framework to further enhance its security solutions. A certificate-based architecture is presented to solve authentication and authorization tasks not just within, but in-between Local Clouds by using a token concept applied for services. This schema also allows the integration of resource constrained devices in coexistence with different levels of security.

[1]  Dániel Kozma,et al.  Enhancements of the Arrowhead Framework to refine inter-cloud service interactions , 2016, IECON 2016 - 42nd Annual Conference of the IEEE Industrial Electronics Society.

[2]  Nuno Pereira,et al.  Security vulnerabilities and risks in industrial usage of wireless communication , 2014, Proceedings of the 2014 IEEE Emerging Technology and Factory Automation (ETFA).

[3]  Srivaths Ravi,et al.  Security in embedded systems: Design challenges , 2004, TECS.

[4]  Jerker Delsing,et al.  Organizing IoT Systems-of-Systems from standardized engineering data , 2016, IECON 2016 - 42nd Annual Conference of the IEEE Industrial Electronics Society.

[5]  Jerker Delsing,et al.  An authentication and access control framework for CoAP-based Internet of Things , 2014, IECON 2014 - 40th Annual Conference of the IEEE Industrial Electronics Society.

[6]  Thomas Erl,et al.  SOA Principles of Service Design (The Prentice Hall Service-Oriented Computing Series from Thomas Erl) , 2007 .

[7]  Brice Morin,et al.  The arrowhead approach for SOA application development and documentation , 2014, IECON 2014 - 40th Annual Conference of the IEEE Industrial Electronics Society.

[8]  Pál Varga,et al.  Service Interaction through Gateways for Inter-Cloud Collaboration within the Arrowhead Framework , 2015 .

[9]  Jerker Delsing,et al.  Making system of systems interoperable - The core components of the arrowhead framework , 2017, J. Netw. Comput. Appl..

[10]  Pál Varga,et al.  Information Assurance System in the Arrowhead Project , 2014, ERCIM News.

[11]  Rodrigo Roman,et al.  On the features and challenges of security and privacy in distributed internet of things , 2013, Comput. Networks.

[12]  Gustavo Alonso,et al.  Web Services , 2004, Data-Centric Systems and Applications.