• No results found

Thesis Conclusions

The main objective of this thesis was the propose, implementation and analysis of a secure IoT Cloud environment. This work starts by giving an overview in the various technologies involved in making IoT and Cloud computing environments a possibility, as well some of their limitations and/or problems. Adding to that it was also presented some work already done in those areas.

After that introduction some preliminary tests were done in a platform named Skynet. This platform uses a machine-to-machine mqtt protocol. Those tests served to demonstrate that at certain hours of the day there is an increase in activity on the web, that increase in activity affect the QoS. Distance to the server that provides the required services also proved to be an issue that affected QoS. On security tests it was ascertained that mechanisms needed to be implemented in order to protect crucial data, as an example it was shown that tokens transmitted to authenticate devices can be captured and its content read.

After the preliminary tests were done, the scenario for implementing these tech-nologies was described. Moving on to the proposed system the architecture was presented and explained. On implementations and decisions, it was decided to use CoAP as the protocol for the IoT 6LoWPAN network. Eclipse Californium(Cf) was chosen as the CoAP implementation to be used and Eclipse Scandium(Sc) was chosen as the security module for implementing DTLS protocol.

Implementation testing compare the delay of completing an information ex-change in Open CoAP versus the Secure approach. Those tests served to show how the system is affected by using security in information exchanges. Tests were done on different levels of activity of the cpu, which was done in order to ascertain how

much impact that would have on the delay of communications.

Gathered data from the testing phase was used in order to draw some box-plot graphs that permit an easier results analysis. It was concluded that securing communications has high impact on system performance, also the variation of cpu activity heavily affect the delay of exchanging information.

Securing the the entirety of the system might not be a good approach when designing the platform since it has high impact on performance and energy con-sumption. The ideal method of applying security and authentication to these kind of systems might be implement a mix mode of communication. One that compre-hend open and secure communications between peers.

Information with little to none security requirements would be transmitted in open mode, since capture does not compromises security or privacy, and a secure mode for exchanging sensitive information with security requirements.

These modifications would potentially optimize system performance and energy consumption.

After reaching conclusions on the benefits and disadvantages of each method of securing an IoT Cloud platform some objectives for future work were defined.

As future work its proposed the following. Implementation and analysis of a mix mode of communication that permit open and secure transmissions by doing this it can be assessed if using the two modes will have a beneficial impact.

Hardware installation and testing and testing performance when using nodes as relayers this will permit to assess the limitations of using nodes relayers. And adding header compression to the DTLS technology in order to minimize the overhead of transmissions.

Bibliography

[1] Carlos Dores, Luis Paulo Reis, Nuno Vasco Lopes, Internet of Things and Cloud Computing, 9th Iberian Conference on Information Systems and Tech-nologies, Barcelona, June 2014, 18-21.

[2] Syed A. Ahson and Mohammad Ilyas, IP multimedia subsystem (IMS) hand-book, 2nd edition, ISBN 9781420064599, Taylor & Francis Group, 2009.

[3] M. C. Domingo, A context-aware service architecture for the integration of body sensor networks and social networks through IP multimedia Subsystem, IEEE Communication Magazine, Jan. 2011.

[4] Khalid Al-Begain, Chitra Balakrishna, Luis Angel Galindo and David Moro, IMS: A Development and Deployment Perspective, ISBN 9780470740347, John Wiley & Sons Ltd, 2009.

[5] G. Camarillo and M. A. Garc´ıa-Mart´ın, The 3G IP Multimedia Subsystem (IMS): Merging the Internet and the Cellular Worlds, 2nd edition, ISBN 9780470018187, John Wiley & Sons Ltd, 2006.

[6] 3GPP Tech. Spec., IP Multimedia Subsystem (IMS) (Release 7), 2006; http:

//www.3gpp.org/ftp/Specs/html-info/23228.htm.

[7] Payam Barnaghi, Wei Wang, Cory Henson and Kerry Taylor, Semantics for the Internet of Things: early progress and back to the future, Interna-tional Journal on Semantic Web and Information Systems (IJSWIS), IGI Global, 2012; http://personal.ee.surrey.ac.uk/Personal/P.Barnaghi/

doc/IJSWIS_SemIoT_CR_2.pdf.

[8] Rajkumar Buyyab, Jayavardhana Gubbia, Slaven Marusica and Marimuthu Palaniswamia, Internet of Things (IoT): A vision, architectural elements,

and future directions, Elsevier Inc, February 2013; http://www.buyya.com/

papers/Internet-of-Things-Vision-Future2013.pdf.

[9] Mari Carmen Domingo, An overview of the Internet of Things for people with disabilities, in Journal of Network and Computer Applications vol. 35, Elsevier Ltd, 2012, 584-596.

[10] Martin Haenggi and Daniele Puccinelli, Wireless Sensor Networks: Applica-tions and Challenges of Ubiquitous Sensing, IEEE Circuits and Systems Mag-azine, Third Quarter 2005.

[11] P. Fergus A Framework for Physical Health Improvement using Wireless Sen-sor Networks and Gaming, Pervasive Computing Technologies for Healthcare 3rd International Conference, IEEE, London, April 2009, pp. 1-4.

[12] Benny P L Lo, Guang-Zhong Yang, Key Technical challenges and current implementations of Body sensor networks 2nd International Workshop on Body Sensor Networks, London, UK, April 2005; http://vip.doc.ic.ac.

uk/bsn/public/UbiMonPapers/Key_Technical_Challenges_and_Current_

Implementations_of_Body_Sensor_Networks.pdf.

[13] M. Li, W. Lou, and K. Ren, Data Security and Privacy in Wireless Body Area Networks, Wireless Communications, IEEE vol. 17 Issue: 1, February 2010, pp. 51-58.

[14] M. Patel and J. Wang, Applications, Challenges, and Prospective in Emerging Body Area Networking Technologies, Wireless Communications, IEEE vol. 17 Issue:1, February 2010, pp. 80-88.

[15] Dan C. Marinescu, Cloud Computing Theory and Practice, ISBN 9780124046276, Elsevier Inc., 2013.

[16] Rajkumar Buyya, Christian Vecchiola and S. Thamarai Selvi, Mastering Cloud Computing Foundations and Applications Programming, ISBN 9780124114548, Elsevier Inc.,2013.

[17] Ileana Castrillo, Derrick Rountree and Hai Jiang as Technical Editor, The Basics of Cloud Computing: Understanding the Fundamentals of Cloud Com-puting in Theory and Practice, ISBN 9780124059320, Elsevier Inc., 2013.

[18] Randee Adams and Eric Bauer, Reliability and availability of cloud computing, ISBN 9781118177013, IEEE, John Wiley & Sons Ltd, 2012.

[19] IETF RFC 768 http://tools.ietf.org/html/rfc768 [accessed on Jan.

2015].

[20] IETF RFC 793 http://tools.ietf.org/html/rfc793[accessed on Jan.

2015].

[21] http://mqtt.org/faq [accessed on Jan. 2015].

[22] Z. Shelby, K. Hartke, C. Bormann, and B. Frank. Constrained Application Protocol (CoAP), draft-ietf-core-coap-18, Jun. 28, 2012.

[23] https://datatracker.ietf.org/wg/core/charter/ [accessed on Aug. 2015].

[24] http://www.eclipse.org/californium/[accessed on Aug. 2015].

[28] E. Rescorla and N. Modadugu. Datagram Transport Layer Security Version 1.2. RFC 6347 (Proposed Standard), IETF, Jan. 2012.

[29] P. Wouters, J. Gilmore, S. Weiler, T. Kivinen, and H. Tschofenig. Out-of-Band Public Key Validation for Transport Layer Security, draft-ietf-tls-oob-pubkey-04, IETF, July 2012.

[30] Jayavardhana Gubbia, Rajkumar Buyyab, Slaven Marusic, Marimuthu Palaniswami, Internet of Things (IoT): A vision, architectural elements, and

future directions, Future Generation Computer Systems vol. 29, Elsevier Inc., 2013, pp. 1645–1660.

[31] Chunming Rong, Son T. Nguyen, Martin Gilje Jaatun, Beyond lightning: A survey on security challenges in cloud computing, Computers and Electrical Engineering Vol. 39, Elsevier Ltd, 2013, pp. 47-54.

[32] John Panneerselvam, Stelios Sotiriadis, Nik Bessis, Nick Antonopoulos, Se-curing Authentication and Trusted Migration of Weblets in the Cloud with Reduced Traffic, ISBN 9781467319867 , Emerging Intelligent Data and Web Technologies 3rd International Conference, IEEE, 2012, pp. 316 - 319.

[33] Daniele Trabalza, Implementation and Evaluation of Datagram Transport Layer Security (DTLS) for the Android Operating System, Master’s Degree Project, Stockholm, Sweden, June 2012.

[34] http://www.infoq.com/articles/perf4j[accessed on Oct. 2015].

[35] Giulio Peretti, CoAP over DTLS TinyOS Implementation and Performance Analysis, Tesi di laurea magistrale, University of Padova, December 10, 2013.

[36] Shahid Raza, Hossein Shafagh, Kasun Hewage, Ren Hummen, and Thiemo Voigt, Lithe: Lightweight Secure CoAP for the Internet of Things,IEEE Sen-sors Journal Vol.13 NO. 10, October 2013.

[37] http://skynet.im [accessed on Fev. 2014].

Related documents