A Secure Connectivity Model for Internet of Things Analytics Service Delivery

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Approaches to the provision of data analytics for businesses offer methods to analyse and model data, enabling informed decision making to improve business performance and profitability. Typically, analytics processing is an intensive task and the demand for business insight, on-demand, means that organisations make use of elastic cloud provisioned resources to host such services. However, within the shared domains of multi-tenant cloud computing, business data and models are exposed to greater security threats and compromised privacy, since an unauthorised user may be able to gain access to highly sensitive, consolidated business-critical information. Business analytics processes are often composed from orchestrated, collaborating services, which are consumed by users from multiple cloud systems (in different security realms), which need to be engaged dynamically at runtime. If heterogeneous cloud systems located in different security realms do not have direct
authentication relationships, then it is a considerable technical challenge to enable secure collaboration. In order to address this security challenge, a new authentication framework is required to establish trust amongst business analytics service instances and users by distributing a common session secret to all participants of a session. We address this challenge by designing and implementing a secure multiparty authentication framework for dynamic interaction, for the scenario where members of different security realms express a need to access orchestrated services. This novel framework exploits the relationship of trust between session members in different security realms, to enable a user to obtain security credentials that access cloud resources in a remote realm. The mechanism assists cloud session users to authenticate their session membership, thereby improving the performance of authentication processes within multiparty sessions. We see applicability of this framework beyond multiple cloud infrastructure, to that of any scenario where multiple security realms has the potential to exist, such as the emerging Internet of Things (IoT).
Original languageEnglish
Title of host publication2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI)
EditorsFrederic Loulergue, Guojun Wang, Md Zakirul Alam Bhuiyan, Xiaoxing Ma, Peng Li, Manuel Roveri, Qi Han, Lei Chen
PublisherIEEE Computer Society
Pages9-16
Number of pages8
ISBN (Electronic)9781538693803
ISBN (Print)9781538693810
DOIs
Publication statusPublished - 4 Dec 2018
Externally publishedYes
Event2018 IEEE Smart World Congress: Ubiquitous Intelligence for Smart World - Guangzhou, China
Duration: 8 Oct 201812 Oct 2018
http://www.smart-world.org/2018/ (Link to Conference Website)

Conference

Conference2018 IEEE Smart World Congress
CountryChina
CityGuangzhou
Period8/10/1812/10/18
Internet address

Fingerprint

Industry
Authentication
Cloud computing
Internet of things
Profitability
Decision making
Processing

Cite this

Al-Aqrabi, H., & Hill, G. (2018). A Secure Connectivity Model for Internet of Things Analytics Service Delivery. In F. Loulergue, G. Wang, M. Z. A. Bhuiyan, X. Ma, P. Li, M. Roveri, Q. Han, ... L. Chen (Eds.), 2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI) (pp. 9-16). [8560016] IEEE Computer Society. https://doi.org/10.1109/SmartWorld.2018.00038
Al-Aqrabi, Hussain ; Hill, Graham. / A Secure Connectivity Model for Internet of Things Analytics Service Delivery. 2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI). editor / Frederic Loulergue ; Guojun Wang ; Md Zakirul Alam Bhuiyan ; Xiaoxing Ma ; Peng Li ; Manuel Roveri ; Qi Han ; Lei Chen. IEEE Computer Society, 2018. pp. 9-16
@inproceedings{30171c5b2b974e7cac74608de6cf3c39,
title = "A Secure Connectivity Model for Internet of Things Analytics Service Delivery",
abstract = "Approaches to the provision of data analytics for businesses offer methods to analyse and model data, enabling informed decision making to improve business performance and profitability. Typically, analytics processing is an intensive task and the demand for business insight, on-demand, means that organisations make use of elastic cloud provisioned resources to host such services. However, within the shared domains of multi-tenant cloud computing, business data and models are exposed to greater security threats and compromised privacy, since an unauthorised user may be able to gain access to highly sensitive, consolidated business-critical information. Business analytics processes are often composed from orchestrated, collaborating services, which are consumed by users from multiple cloud systems (in different security realms), which need to be engaged dynamically at runtime. If heterogeneous cloud systems located in different security realms do not have directauthentication relationships, then it is a considerable technical challenge to enable secure collaboration. In order to address this security challenge, a new authentication framework is required to establish trust amongst business analytics service instances and users by distributing a common session secret to all participants of a session. We address this challenge by designing and implementing a secure multiparty authentication framework for dynamic interaction, for the scenario where members of different security realms express a need to access orchestrated services. This novel framework exploits the relationship of trust between session members in different security realms, to enable a user to obtain security credentials that access cloud resources in a remote realm. The mechanism assists cloud session users to authenticate their session membership, thereby improving the performance of authentication processes within multiparty sessions. We see applicability of this framework beyond multiple cloud infrastructure, to that of any scenario where multiple security realms has the potential to exist, such as the emerging Internet of Things (IoT).",
keywords = "authentication, Cloud computing, distributed systems, Internet of Things, multiparty, security, trust",
author = "Hussain Al-Aqrabi and Graham Hill",
year = "2018",
month = "12",
day = "4",
doi = "10.1109/SmartWorld.2018.00038",
language = "English",
isbn = "9781538693810",
pages = "9--16",
editor = "Frederic Loulergue and Guojun Wang and Bhuiyan, {Md Zakirul Alam} and Xiaoxing Ma and Peng Li and Manuel Roveri and Qi Han and Lei Chen",
booktitle = "2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI)",
publisher = "IEEE Computer Society",
address = "United States",

}

Al-Aqrabi, H & Hill, G 2018, A Secure Connectivity Model for Internet of Things Analytics Service Delivery. in F Loulergue, G Wang, MZA Bhuiyan, X Ma, P Li, M Roveri, Q Han & L Chen (eds), 2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI)., 8560016, IEEE Computer Society, pp. 9-16, 2018 IEEE Smart World Congress, Guangzhou, China, 8/10/18. https://doi.org/10.1109/SmartWorld.2018.00038

A Secure Connectivity Model for Internet of Things Analytics Service Delivery. / Al-Aqrabi, Hussain; Hill, Graham.

2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI). ed. / Frederic Loulergue; Guojun Wang; Md Zakirul Alam Bhuiyan; Xiaoxing Ma; Peng Li; Manuel Roveri; Qi Han; Lei Chen. IEEE Computer Society, 2018. p. 9-16 8560016.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - A Secure Connectivity Model for Internet of Things Analytics Service Delivery

AU - Al-Aqrabi, Hussain

AU - Hill, Graham

PY - 2018/12/4

Y1 - 2018/12/4

N2 - Approaches to the provision of data analytics for businesses offer methods to analyse and model data, enabling informed decision making to improve business performance and profitability. Typically, analytics processing is an intensive task and the demand for business insight, on-demand, means that organisations make use of elastic cloud provisioned resources to host such services. However, within the shared domains of multi-tenant cloud computing, business data and models are exposed to greater security threats and compromised privacy, since an unauthorised user may be able to gain access to highly sensitive, consolidated business-critical information. Business analytics processes are often composed from orchestrated, collaborating services, which are consumed by users from multiple cloud systems (in different security realms), which need to be engaged dynamically at runtime. If heterogeneous cloud systems located in different security realms do not have directauthentication relationships, then it is a considerable technical challenge to enable secure collaboration. In order to address this security challenge, a new authentication framework is required to establish trust amongst business analytics service instances and users by distributing a common session secret to all participants of a session. We address this challenge by designing and implementing a secure multiparty authentication framework for dynamic interaction, for the scenario where members of different security realms express a need to access orchestrated services. This novel framework exploits the relationship of trust between session members in different security realms, to enable a user to obtain security credentials that access cloud resources in a remote realm. The mechanism assists cloud session users to authenticate their session membership, thereby improving the performance of authentication processes within multiparty sessions. We see applicability of this framework beyond multiple cloud infrastructure, to that of any scenario where multiple security realms has the potential to exist, such as the emerging Internet of Things (IoT).

AB - Approaches to the provision of data analytics for businesses offer methods to analyse and model data, enabling informed decision making to improve business performance and profitability. Typically, analytics processing is an intensive task and the demand for business insight, on-demand, means that organisations make use of elastic cloud provisioned resources to host such services. However, within the shared domains of multi-tenant cloud computing, business data and models are exposed to greater security threats and compromised privacy, since an unauthorised user may be able to gain access to highly sensitive, consolidated business-critical information. Business analytics processes are often composed from orchestrated, collaborating services, which are consumed by users from multiple cloud systems (in different security realms), which need to be engaged dynamically at runtime. If heterogeneous cloud systems located in different security realms do not have directauthentication relationships, then it is a considerable technical challenge to enable secure collaboration. In order to address this security challenge, a new authentication framework is required to establish trust amongst business analytics service instances and users by distributing a common session secret to all participants of a session. We address this challenge by designing and implementing a secure multiparty authentication framework for dynamic interaction, for the scenario where members of different security realms express a need to access orchestrated services. This novel framework exploits the relationship of trust between session members in different security realms, to enable a user to obtain security credentials that access cloud resources in a remote realm. The mechanism assists cloud session users to authenticate their session membership, thereby improving the performance of authentication processes within multiparty sessions. We see applicability of this framework beyond multiple cloud infrastructure, to that of any scenario where multiple security realms has the potential to exist, such as the emerging Internet of Things (IoT).

KW - authentication

KW - Cloud computing

KW - distributed systems

KW - Internet of Things

KW - multiparty

KW - security

KW - trust

UR - http://www.scopus.com/inward/record.url?scp=85060290777&partnerID=8YFLogxK

U2 - 10.1109/SmartWorld.2018.00038

DO - 10.1109/SmartWorld.2018.00038

M3 - Conference contribution

SN - 9781538693810

SP - 9

EP - 16

BT - 2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI)

A2 - Loulergue, Frederic

A2 - Wang, Guojun

A2 - Bhuiyan, Md Zakirul Alam

A2 - Ma, Xiaoxing

A2 - Li, Peng

A2 - Roveri, Manuel

A2 - Han, Qi

A2 - Chen, Lei

PB - IEEE Computer Society

ER -

Al-Aqrabi H, Hill G. A Secure Connectivity Model for Internet of Things Analytics Service Delivery. In Loulergue F, Wang G, Bhuiyan MZA, Ma X, Li P, Roveri M, Han Q, Chen L, editors, 2018 IEEE Smart World, Ubiquitous Intelligence & Computing, Advanced & Trusted Computing, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI). IEEE Computer Society. 2018. p. 9-16. 8560016 https://doi.org/10.1109/SmartWorld.2018.00038