research-article

Securing combined Fog-to-Cloud system Through SDN Approach

Authors:

Sarang Kahvazadeh,

Vitor B. Souza,

Xavi Masip-Bruin,

Eva Marn-Tordera,

Rodrigo DiazAuthors Info & Claims

Crosscloud'17: Proceedings of the 4th Workshop on CrossCloud Infrastructures & Platforms

Article No.: 2, Pages 1 - 6

https://doi.org/10.1145/3069383.3069385

Published: 23 April 2017 Publication History

Abstract

Future IoT services execution may benefit from combining resources at cloud and at the edge. To that end, new architectures should be proposed to handle IoT services in a coordinated way at either the edge of the network, the cloud, or both. Reacting to that need, the Fog-to-Cloud concept has been recently proposed. A key aspect in the F2C design refers to security, since F2C raises security issues besides those yet unsolved in fog and cloud. Thus, we envision the need for new security strategies to handle all components in the F2C architecture. In this paper we propose an SDN-based (mater/slave) security architecture leveraging a centralized controller on the cloud, and distributed controllers at the edge of the network. We argue that the proposed architecture brings more security and privacy to the cloud users by reducing the distance between them and, therefore, reducing the risks of the so called man-in-the-middle attacks. The proposed security architecture is analyzed in some critical infrastructure scenarios in order to illustrate their potential benefits.

References

[1]

J.Gonzalez-Martnez, et al., Cloud computing and education: A state-ofthe-art survey, Computers & Education 80 (2015) 132--151, 2014.

Digital Library

[2]

S.Singh, Y. Jeong, J. H. Park, A survey on cloud computing security: Issues, threats, and solutions, Journal of Network and Computer Applications 75 (2016) 200222, 2016 Elsevier.

Digital Library

[3]

F. Bonomi, et al., Fog Computing: A Platform for Internet of Things and Analytics, Big Data and Internet of Things: A Roadmap for Smart Environments Vol. 546 of Studies in Computational Intelligence 2014.

[4]

X. Masip-Bruin, et al., Foggy clouds and cloudy fogs: a real need for coordinated management of fog-to-cloud (F2C) computing systems, IEEE Wireless Communication Magazine, October 2016.

Digital Library

[5]

Hongwei Li1, Yuanshun Dai1, Ling Tian1, and Haomiao Yang, Identity-based Authentication for Cloud Computing, Springer-Verlag Berlin Heidelberg, 2009.

[6]

Dr.N. Venakatesan, M. Rathan Kumar, Finger Print Authentication F or Improved Cloud Security,International Conference on Computational Systems and Information Systems for Sustainable Solutions, 2016

[7]

Sin-Fu Lai, Hui-Kai Su, Wen-Hsu Hsiao, Kim-Joan Chen, Design and Implementation of Cloud Security Defense System with Software

[8]

N.Jayapandian, Dr.A.M.J.Md.Zubair Rahman, M.Koushikaa, S.Radhikadev, A Novel Approach to Enhance Multi Level Security System Using Encryption with Fingerprint in Cloud, World Conference on Futuristic Trends in Research and Innovation for Social Welfare (WCFTR16)

[9]

Bhale Pradeepkumar Gajendra, Vinay Kumar Singh, More Sujeet, Achieving Cloud Security using Third Party Auditor, MD5 and Identity Based Encryption, International Conference on Computing, Communication and Automation (ICCCA2016).

[10]

Akashdeep Bhardwaj, GVB Subrahmanyam, Vinay Avasthi, Hanumat Sastry, Security Algorithms for Cloud Computing, International Conference on Computational Modeling and Security (CMS 2016).

[11]

Y. Li, et al., A SDN-based Architecture for Horizontal Internet of Things Services, Communications (ICC), 2016.

[12]

C. Gonzlez, et al., A Novel Distributed SDN-Secured Architecture for the IoT, 2016 Int. Conf. on Distributed Computing in Sensor Systems.

[13]

Vandana C.P, Security improvement in IoT based on Software Defined Networking (SDN), International Journal of Science, Engineering and Technology Research (IJSETR), Volume 5, Issue 1, January 2016

[14]

F. Hu, Q. Hao, K. Bao, A Survey on Software-Defined Network and OpenFlow: From Concept to Implementation, IEEE Communications

[15]

V. Souza, et al., Insights into the Service Execution in a Combined Fogto-Cloud (F2C) Computing System. 2016, Technical report. http://www.ac.upc.edu/app/research-reports/html/RR/2016/10.pdf

[16]

CIPSEC project at www.cipsec.eu

[17]

H. Li, et al., Identity-based authentication for cloud computing. In IEEE International Conference on Cloud Computing. Springer, 2009. 157--1

Digital Library

[18]

C. Dsouza, et al, Policy-driven security management for fog computing: Preliminary framework and a case study. IEEE 15th International Conference on Information Reuse and Integration (IRI). 2014.

Cited By

Ali ALin YLiu JHuang C(2024)The universal federator: A third-party authentication solution to federated cloud, edge, and fogJournal of Network and Computer Applications10.1016/j.jnca.2024.103922229(103922)Online publication date: Sep-2024
https://doi.org/10.1016/j.jnca.2024.103922
Ali AIslam MMallick TIslam MSakib SShohrab Hossain MLin Y(2024)3GPP Edge–Fog federation: Transparent 3rd-party authentication and application mobilityComputer Communications10.1016/j.comcom.2024.05.002222(220-229)Online publication date: Jun-2024
https://doi.org/10.1016/j.comcom.2024.05.002
Chatterjee URay SSadhukhan DDasgupta M(2023)An improved authentication and key management scheme for hierarchical IoT network using elliptic curve cryptographyInnovations in Systems and Software Engineering10.1007/s11334-023-00532-319:3(231-246)Online publication date: 2-Aug-2023
https://doi.org/10.1007/s11334-023-00532-3
Show More Cited By

Securing combined Fog-to-Cloud system Through SDN Approach
1. Computer systems organization
  1. Architectures
2. Social and professional topics
  1. Computing / technology policy

Recommendations

A Pattern for Fog Computing
VikingPLoP '16: Proceedings of the 10th Travelling Conference on Pattern Languages of Programs

Fog Computing is a new variety of the cloud computing paradigm that brings virtualized cloud services to the edge of the network to control the devices in the IoT. We present a pattern for fog computing which describes its architecture, including its ...
Machine learning techniques in emerging cloud computing integrated paradigms: A survey and taxonomy
Abstract
Cloud computing offers Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) to provide compute, network, and storage capabilities to the clients utilizing the pay-per-use model. On the ...
Fog Computing Qos Review and Open Challenges

Internet of Things (IoT) enables inters connectivity among devices and platforms. IoT devices such as sensors, or embedded systems offer computational, storage, and networking resources and the existence of these resources permits to move the ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

Crosscloud'17: Proceedings of the 4th Workshop on CrossCloud Infrastructures & Platforms

April 2017

44 pages

ISBN:9781450349345

DOI:10.1145/3069383

Conference Chairs:
Yehia Elkhatib,
Mohamed Faten Zhani

Copyright © 2017 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGOPS: ACM Special Interest Group on Operating Systems

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 23 April 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed limited

Conference

EuroSys '17

Sponsor:

SIGOPS

EuroSys '17: Twelfth EuroSys Conference 2017

April 23 - 26, 2017

Belgrade, Serbia

Acceptance Rates

Crosscloud'17 Paper Acceptance Rate 8 of 17 submissions, 47%;

Overall Acceptance Rate 16 of 30 submissions, 53%

Upcoming Conference

EuroSys '25

Sponsor:
sigops

Twentieth European Conference on Computer Systems

March 30 - April 3, 2025

Rotterdam , Netherlands

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

24
Total Citations
View Citations
494
Total Downloads

Downloads (Last 12 months)4
Downloads (Last 6 weeks)0

Reflects downloads up to 13 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

Ali ALin YLiu JHuang C(2024)The universal federator: A third-party authentication solution to federated cloud, edge, and fogJournal of Network and Computer Applications10.1016/j.jnca.2024.103922229(103922)Online publication date: Sep-2024
https://doi.org/10.1016/j.jnca.2024.103922
Ali AIslam MMallick TIslam MSakib SShohrab Hossain MLin Y(2024)3GPP Edge–Fog federation: Transparent 3rd-party authentication and application mobilityComputer Communications10.1016/j.comcom.2024.05.002222(220-229)Online publication date: Jun-2024
https://doi.org/10.1016/j.comcom.2024.05.002
Chatterjee URay SSadhukhan DDasgupta M(2023)An improved authentication and key management scheme for hierarchical IoT network using elliptic curve cryptographyInnovations in Systems and Software Engineering10.1007/s11334-023-00532-319:3(231-246)Online publication date: 2-Aug-2023
https://doi.org/10.1007/s11334-023-00532-3
Kurdi HThayananthan V(2022)A Multi-Tier MQTT Architecture with Multiple Brokers Based on Fog Computing for Securing Industrial IoTApplied Sciences10.3390/app1214717312:14(7173)Online publication date: 16-Jul-2022
https://doi.org/10.3390/app12147173
Natraj NKamatchi Sundari VAnanthi KRathika SIndira GRathish C(2022)Security Enhancement of Fog Nodes in IoT Networks Using the IBF SchemeThird International Conference on Image Processing and Capsule Networks10.1007/978-3-031-12413-6_10(119-129)Online publication date: 29-Jul-2022
https://doi.org/10.1007/978-3-031-12413-6_10
Masip-Bruin XMarín-Tordera ERuiz JJukan ATrakadas PCernivec ALioy ALópez DSantos HGonos ASilva ASoriano JKalogiannis G(2021)Cybersecurity in ICT Supply Chains: Key Challenges and a Relevant ArchitectureSensors10.3390/s2118605721:18(6057)Online publication date: 9-Sep-2021
https://doi.org/10.3390/s21186057
Masip-Bruin XMarín-Tordera ESánchez-López SGarcia JJukan AJuan Ferrer AQueralt ASalis ABartoli ACankar MCordeiro CJensen JKennedy J(2021)Managing the Cloud Continuum: Lessons Learnt from a Real Fog-to-Cloud DeploymentSensors10.3390/s2109297421:9(2974)Online publication date: 23-Apr-2021
https://doi.org/10.3390/s21092974
Whaiduzzaman MFarjana NBarros AMahi MSatu MRoy SFidge C(2021)HIBAF: A data security scheme for fog computingJournal of High Speed Networks10.3233/JHS-210673(1-22)Online publication date: 25-Oct-2021
https://doi.org/10.3233/JHS-210673
Martinez MMarin-Tordera EMasip-Bruin X(2021)Scalability analysis of a blockchain-based security strategy for complex IoT systems2021 IEEE 22nd International Conference on High Performance Switching and Routing (HPSR)10.1109/HPSR52026.2021.9481865(1-6)Online publication date: 7-Jun-2021
https://doi.org/10.1109/HPSR52026.2021.9481865
Kurdi HThayananthan V(2021)Authentication mechanisms for IoT system based on distributed MQTT brokers: review and challengesProcedia Computer Science10.1016/j.procs.2021.10.066194(132-139)Online publication date: 2021
https://doi.org/10.1016/j.procs.2021.10.066
Show More Cited By

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents