Visible to the public Enhancing Security and Privacy of Next-Generation Edge Computing Technologies

TitleEnhancing Security and Privacy of Next-Generation Edge Computing Technologies
Publication TypeConference Paper
Year of Publication2019
AuthorsHagan, M., Siddiqui, F., Sezer, S.
Conference Name2019 17th International Conference on Privacy, Security and Trust (PST)
KeywordsActive Security, attack surface area, Cloud to Edge, computer network security, cyber resilience, data confidentiality breach, data privacy, data protection, Data security, device level attacks, edge computing, edge security, embedded system, financial penalties, GDPR, Internet of Things, Internet-of-Things service architectures, IoT, IoT architecture, next-generation edge computing technologies, pubcrawl, raw confidential data, reputational penalties, Resiliency, Resilient Security Architectures, Security Micro-architecture, system security manager
AbstractThe advent of high performance fog and edge computing and high bandwidth connectivity has brought about changes to Internet-of-Things (IoT) service architectures, allowing for greater quantities of high quality information to be extracted from their environments to be processed. However, recently introduced international regulations, along with heightened awareness among consumers, have strengthened requirements to ensure data security, with significant financial and reputational penalties for organisations who fail to protect customers' data. This paper proposes the leveraging of fog and edge computing to facilitate processing of confidential user data, to reduce the quantity and availability of raw confidential data at various levels of the IoT architecture. This ultimately reduces attack surface area, however it also increases efficiency of the architecture by distributing processing amongst nodes and transmitting only processed data. However, such an approach is vulnerable to device level attacks. To approach this issue, a proposed System Security Manager is used to continuously monitor system resources and ensure confidential data is confined only to parts of the device that require it. In event of an attack, critical data can be isolated and the system informed, to prevent data confidentiality breach.
Citation Keyhagan_enhancing_2019