A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products

The Internet of things (IoT) is expected to have an impact on business and the world at large in a way comparable to the Internet itself. An IoT product is a physical product with an associated virtual counterpart connected to the internet with computational as well as communication capabilities. Th...

Descripción completa

Detalles Bibliográficos
Autores principales: Yousefnezhad, Narges, Malhi, Avleen, Keyriläinen, Tuomas, Främling, Kary
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10053576/
https://www.ncbi.nlm.nih.gov/pubmed/36991946
http://dx.doi.org/10.3390/s23063236
_version_ 1785015445894463488
author Yousefnezhad, Narges
Malhi, Avleen
Keyriläinen, Tuomas
Främling, Kary
author_facet Yousefnezhad, Narges
Malhi, Avleen
Keyriläinen, Tuomas
Främling, Kary
author_sort Yousefnezhad, Narges
collection PubMed
description The Internet of things (IoT) is expected to have an impact on business and the world at large in a way comparable to the Internet itself. An IoT product is a physical product with an associated virtual counterpart connected to the internet with computational as well as communication capabilities. The possibility to collect information from internet-connected products and sensors gives unprecedented possibilities to improve and optimize product use and maintenance. Virtual counterpart and digital twin (DT) concepts have been proposed as a solution for providing the necessary information management throughout the whole product lifecycle, which we here call product lifecycle information management (PLIM). Security in these systems is imperative due to the multiple ways in which opponents can attack the system during the whole lifecycle of an IoT product. To address this need, the current study proposes a security architecture for the IoT, taking into particular consideration the requirements of PLIM. The security architecture has been designed for the Open Messaging Interface (O-MI) and Open Data Format (O-DF) standards for the IoT and product lifecycle management (PLM) but it is also applicable to other IoT and PLIM architectures. The proposed security architecture is capable of hindering unauthorized access to information and restricts access levels based on user roles and permissions. Based on our findings, the proposed security architecture is the first security model for PLIM to integrate and coordinate the IoT ecosystem, by dividing the security approaches into two domains: user client and product domain. The security architecture has been deployed in smart city use cases in three different European cities, Helsinki, Lyon, and Brussels, to validate the security metrics in the proposed approach. Our analysis shows that the proposed security architecture can easily integrate the security requirements of both clients and products providing solutions for them as demonstrated in the implemented use cases.
format Online
Article
Text
id pubmed-10053576
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-100535762023-03-30 A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products Yousefnezhad, Narges Malhi, Avleen Keyriläinen, Tuomas Främling, Kary Sensors (Basel) Article The Internet of things (IoT) is expected to have an impact on business and the world at large in a way comparable to the Internet itself. An IoT product is a physical product with an associated virtual counterpart connected to the internet with computational as well as communication capabilities. The possibility to collect information from internet-connected products and sensors gives unprecedented possibilities to improve and optimize product use and maintenance. Virtual counterpart and digital twin (DT) concepts have been proposed as a solution for providing the necessary information management throughout the whole product lifecycle, which we here call product lifecycle information management (PLIM). Security in these systems is imperative due to the multiple ways in which opponents can attack the system during the whole lifecycle of an IoT product. To address this need, the current study proposes a security architecture for the IoT, taking into particular consideration the requirements of PLIM. The security architecture has been designed for the Open Messaging Interface (O-MI) and Open Data Format (O-DF) standards for the IoT and product lifecycle management (PLM) but it is also applicable to other IoT and PLIM architectures. The proposed security architecture is capable of hindering unauthorized access to information and restricts access levels based on user roles and permissions. Based on our findings, the proposed security architecture is the first security model for PLIM to integrate and coordinate the IoT ecosystem, by dividing the security approaches into two domains: user client and product domain. The security architecture has been deployed in smart city use cases in three different European cities, Helsinki, Lyon, and Brussels, to validate the security metrics in the proposed approach. Our analysis shows that the proposed security architecture can easily integrate the security requirements of both clients and products providing solutions for them as demonstrated in the implemented use cases. MDPI 2023-03-18 /pmc/articles/PMC10053576/ /pubmed/36991946 http://dx.doi.org/10.3390/s23063236 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Yousefnezhad, Narges
Malhi, Avleen
Keyriläinen, Tuomas
Främling, Kary
A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title_full A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title_fullStr A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title_full_unstemmed A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title_short A Comprehensive Security Architecture for Information Management throughout the Lifecycle of IoT Products
title_sort comprehensive security architecture for information management throughout the lifecycle of iot products
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10053576/
https://www.ncbi.nlm.nih.gov/pubmed/36991946
http://dx.doi.org/10.3390/s23063236
work_keys_str_mv AT yousefnezhadnarges acomprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT malhiavleen acomprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT keyrilainentuomas acomprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT framlingkary acomprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT yousefnezhadnarges comprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT malhiavleen comprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT keyrilainentuomas comprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts
AT framlingkary comprehensivesecurityarchitectureforinformationmanagementthroughoutthelifecycleofiotproducts

Ejemplares similares