Proceedings of the 18th Conference on Computer Science and Intelligence Systems

DOI: http://dx.doi.org/10.15439/2023F3882

Citation: Proceedings of the 18th Conference on Computer Science and Intelligence Systems, M. Ganzha, L. Maciaszek, M. Paprzycki, D. Ślęzak (eds). ACSIS, Vol. 35, pages 769–780 (2023)

Full text

Abstract. An increasing number of Internet of Things (IoT) applications are based on a federated environment. Examples include the creation of federations of NATO countries and non-NATO entities participating in missions (Federated Mission Networking) or the interaction of civilian services and the military when providing Humanitarian Assistance And Disaster Relief. Federations are often formed on an ad hoc basis, with the primary goal of combining forces in a federated mission environment at any time, on short notice, and with optimization of the resources involved. One of the leading security challenges in a federated environment of separate IoT administrative domains is effective identity and access management, which is the basis for establishing a relationship of trust and secure communication between IoT devices belonging to different partners. When carrying out missions involving the military and ensuring security, meeting requirements for immediate interoperability is important. In the paper, an attempt has been made to develop a system architecture framework for secure and reliable data streams distribution in a multi-organizational federation environment, where data authentication is based on IoT device identity (fingerprint). Moreover, a hardware-software IoT gateway has been proposed for the verification process and the integration of Hyperledger Fabric's distributed ledger technology, the Apache Kafka message broker, and data-processing microservices implemented using the Kafka Streams API library. The performance tests conducted confirm the suitability of the developed system framework for processing and distributing audio-video data in a federation IoT environment. Also, a high-level security and reliability assessment was conducted in the paper.

References

1. M. Manso et al., "Connecting the Battlespace: C2 and IoT Technical Interoperability in Tactical Federated Environments". MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM), 2022, pp. 1045-1052, http://dx.doi.org/10.1109/MILCOM55135.2022.10017950.
2. F. Johnsen, M. Hauge, "Interoperable, adaptable, information exchange in NATO coalition operations", Journal of Military Studies. 11, 2022, pp.49-62, http://dx.doi.org/10.2478/jms-2022-0005.
3. H. Kopetz, W. Steiner, "Real-Time Systems: Design Principles for Distributed Embedded Applications", Springer, 2022, http://dx.doi.org/10.1007/978-3-031-11992-7_13.
4. N. Jansen et al., "NATO Core Services profiling for Hybrid Tactical Networks — Results and Recommendations," 2021 International Conference on Military Communication and Information Systems (ICM-CIS), The Hague, Netherlands, 2021, pp. 1-8, http://dx.doi.org/10.1109/ICM-CIS52405.2021.9486415.
5. N. Suri et al., "Experimental Evaluation of Group Communications Protocols for Tactical Data Dissemination", MILCOM 2018 - 2018 IEEE Military Communications Conference (MILCOM), Los Angeles, CA, USA, 2018, pp. 133-139, http://dx.doi.org/10.1109/MILCOM.2018.8599749.
6. Hyperledger Fabric documentation. Accessed: May. 22, 2023. [Online]. Available: https://hyperledger-fabric.readthedocs.io/
7. Apache Kafka documentation. Accessed: May. 22, 2023. [Online]. Available: https://kafka.apache.org/
8. Xu Wang et al., "Survey on blockchain for Internet of Things", Computer Communications 136, 2019, pp. 10-29, http://dx.doi.org/10.1016/j.comcom.2019.01.006
9. L. Ramasamy et al., "A Survey on blockchain for industrial Internet of Things", Alexandria Engineering Journal. 61., 2021, pp. 6001-6022, http://dx.doi.org/10.1016/j.aej.2021.11.023.
10. O. Alfandi et al., "A survey on boosting IoT security and privacy through blockchain", Cluster Computing. 24, 2021, pp. 37-55, http://dx.doi.org/10.1007/s10586-020-03137-8.
11. S. Guo et al., "Master-slave chain based trusted cross-domain authentication mechanism in IoT", Journal of Network and Computer Applications. 172, 2020, http://dx.doi.org/10.1016/j.jnca.2020.102812.
12. L. Xu et al., "DIoTA: Decentralized-Ledger-Based Framework for Data Authenticity Protection in IoT Systems", IEEE Network. 34, 2020, pp. 38-46, http://dx.doi.org/10.1109/MNET.001.1900136.
13. U. Khalid et al., "A decentralized lightweight blockchain-based authentication mechanism for IoT systems", Cluster Computing 23, 2020, pp. 2067–2087, http://dx.doi.org/10.1007/s10586-020-03058-6
14. A. Sivanathan et al., "Classifying IoT Devices in Smart Environments Using Network Traffic Characteristics", IEEE Transactions on Mobile Computing. 18, 2019, pp. 1745-1759, http://dx.doi.org/10.1109/TMC.2018.2866249.
15. Q. Xu et al., "Device Fingerprinting in Wireless Networks: Challenges and Opportunities", IEEE Communications Surveys & Tutorials. 18, 2016, pp. 94-104, http://dx.doi.org/10.1109/COMST.2015.2476338.
16. A. Jagannath et al., "A Comprehensive Survey on Radio Frequency (RF) Fingerprinting: Traditional Approaches, Deep Learning, and Open Challenges", 2022, http://dx.doi.org/10.36227/techrxiv.17711444.
17. M. Jarosz et al., "Formal verification of security properties of the Lightweight Authentication and Key Exchange Protocol for Federated IoT devices," 17th Conference on Computer Science and Intel- ligence Systems (FedCSIS), Sofia, Bulgaria, 2022, pp. 617-625, http://dx.doi.org/10.15439/2022F169.
18. L. Sanogo et al., "Intrusion Detection System for IoT: Analysis of PSD Robustness", Sensors. 23., 2023, pp. 2353, http://dx.doi.org/10.3390/s23042353.
19. B. Chatterjee et al., "RF-PUF: Enhancing IoT Security Through Authentication of Wireless Nodes Using In-Situ Machine Learning", IEEE Internet of Things Journal. 6, 2019, pp. 388-398, http://dx.doi.org/10.1109/JIOT.2018.2849324.
20. B. Charyyev and M. H. Gunes, "IoT Traffic Flow Identification using Locality Sensitive Hashes", ICC 2020 - 2020 IEEE International Conference on Communications (ICC), Dublin, Ireland, 2020, pp. 1-6, http://dx.doi.org/10.1109/ICC40277.2020.9148743.
21. C. Neumann et al., "An Empirical Study of Passive 802.11 Device Fingerprinting", 32nd International Conference on Distributed Computing Systems Workshops, Macau, China, 2012, pp. 593-602, http://dx.doi.org/10.1109/ICDCSW.2012.8.
22. F. De Rango et al., "Energy-aware dynamic Internet of Things security system based on Elliptic Curve Cryptography and Message Queue Telemetry Transport protocol for mitigating Replay attacks", Pervasive and Mobile Computing. 61, 2019, pp. 101105, DOI: 10.1016/j.pmcj.2019.101105.
23. M. Yang et al., "Differentially Private Data Sharing in a Cloud Federation with Blockchain", IEEE Cloud Computing. 5, 2018, pp. 69-79, http://dx.doi.org/10.1109/MCC.2018.064181122.
24. RFC 7228: Terminology for Constrained-Node Networks Accessed: May. 22, 2023. [Online]. Available: https://www.rfc-editor.org/rfc/rfc7228.
25. S. Kul et al., "Event-Based Microservices With Apache Kafka Streams: A Real-Time Vehicle Detection System Based on Type, Color, and Speed Attributes", IEEE Access. 9, 2021, pp. 83137-83148, http://dx.doi.org/10.1109/ACCESS.2021.3085736.
26. J. Karimov et al., "Benchmarking Distributed Stream Data Processing Systems" IEEE 34th International Conference on Data Engineering (ICDE), Paris, France, 2018, pp. 1507-1518, http://dx.doi.org/10.1109/ICDE.2018.00169.
27. G. van Dongen, D. Van den Poel, "Evaluation of Stream Processing Frameworks", IEEE Transactions on Parallel and Distributed Systems. 31, 2020, pp. 1845-1858, http://dx.doi.org/10.1109/TPDS.2020.2978480.
28. H. Keval, A. Sasse, "To catch a thief - You need at least 8 frames per second", Proceedings of the 16th ACM international conference on Multimedia, 2008, pp. 941-944, http://dx.doi.org/10.1145/1459359.1459527.