Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings

Designing smart building IoT applications is a complex task. It requires efficiently integrating a broad number of heterogeneous, low-resource devices that adopt lightweight strategies. IoT frameworks, especially if they are standard-based, may help designers to scaffold the applications. OpenFog, e...

Descripción completa

Detalles Bibliográficos
Autores: Martín Toral, Imanol, Calvo Gordillo, Isidro, Villar, Eneko, Gil-García Leiva, José Miguel, Barambones Caramazana, Oscar
Tipo de recurso: artículo
Fecha de publicación:2024
País:España
Institución:Universidad del País Vasco
Repositorio:Addi. Archivo Digital para la Docencia y la Investigación
OAI Identifier:oai:addi.ehu.eus:10810/69328
Acceso en línea:http://hdl.handle.net/10810/69328
Access Level:acceso abierto
Palabra clave:smart buildings
cybersecurity
OpenFog (IEEE1934)
artificial intelligence of things (AIoT)
id ES_6a033ccce2037d83dd49e5271c2c8ef4
oai_identifier_str oai:addi.ehu.eus:10810/69328
network_acronym_str ES
network_name_str España
repository_id_str
spelling Introducing Security Mechanisms in OpenFog-Compliant Smart BuildingsMartín Toral, ImanolCalvo Gordillo, IsidroVillar, EnekoGil-García Leiva, José MiguelBarambones Caramazana, Oscarsmart buildingscybersecurityOpenFog (IEEE1934)artificial intelligence of things (AIoT)Designing smart building IoT applications is a complex task. It requires efficiently integrating a broad number of heterogeneous, low-resource devices that adopt lightweight strategies. IoT frameworks, especially if they are standard-based, may help designers to scaffold the applications. OpenFog, established as IEEE 1934 standard, promotes the use of free open source (FOS) technologies and has been identified for use in smart buildings. However, smart building systems may present vulnerabilities, which can put their integrity at risk. Adopting state-of-the-art security mechanisms in this domain is critical but not trivial. It complicates the design and operation of the applications, increasing the cost of the deployed systems. In addition, difficulties may arise in finding qualified cybersecurity personnel. OpenFog identifies the security requirements of the applications, although it does not describe clearly how to implement them. This article presents a scalable architecture, based on the OpenFog reference architecture, to provide security by design in buildings of different sizes. It adopts FOS technologies over low-cost IoT devices. Moreover, it presents guidelines to help developers create secure applications, even if they are not security experts. It also proposes a selection of technologies in different layers to achieve the security dimensions defined in the X.805 ITU-T recommendation. A proof-of-concept Indoor Environment Quality (IEQ) system, based on low-cost smart nodes, was deployed in the Faculty of Engineering of Vitoria-Gasteiz to illustrate the implementation of the presented approach. The operation of the IEQ system was analyzed using software tools frequently used to find vulnerabilities in IoT applications. The use of state-of-the-art security mechanisms such as encryption, certificates, protocol selection and network partitioning/configuration in the OpenFog-based architecture improves smart building security.The authors wish to express their gratitude to the Basque Government through the project EKOHEGAZ II (ELKARTEK KK-2023/00051), to the Diputacion Foral de Alava (DFA) through the project CONAVANTER, to the UPV/EHU through the projects GIU23/002, and to the MobilityLab Foundation (CONV23/14, CONV23/12) for supporting this work.MDPI2024202420242024info:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10810/69328reponame:Addi. Archivo Digital para la Docencia y la Investigacióninstname:Universidad del País VascoIngléshttps://www.mdpi.com/2079-9292/13/15/2900info:eu-repo/semantics/openAccesshttp://creativecommons.org/licenses/by/4.0/es/© 2024 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/ 4.0/).oai:addi.ehu.eus:10810/693282026-06-18T09:23:17Z
dc.title.none.fl_str_mv Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
title Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
spellingShingle Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
Martín Toral, Imanol
smart buildings
cybersecurity
OpenFog (IEEE1934)
artificial intelligence of things (AIoT)
title_short Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
title_full Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
title_fullStr Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
title_full_unstemmed Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
title_sort Introducing Security Mechanisms in OpenFog-Compliant Smart Buildings
dc.creator.none.fl_str_mv Martín Toral, Imanol
Calvo Gordillo, Isidro
Villar, Eneko
Gil-García Leiva, José Miguel
Barambones Caramazana, Oscar
author Martín Toral, Imanol
author_facet Martín Toral, Imanol
Calvo Gordillo, Isidro
Villar, Eneko
Gil-García Leiva, José Miguel
Barambones Caramazana, Oscar
author_role author
author2 Calvo Gordillo, Isidro
Villar, Eneko
Gil-García Leiva, José Miguel
Barambones Caramazana, Oscar
author2_role author
author
author
author
dc.subject.none.fl_str_mv smart buildings
cybersecurity
OpenFog (IEEE1934)
artificial intelligence of things (AIoT)
topic smart buildings
cybersecurity
OpenFog (IEEE1934)
artificial intelligence of things (AIoT)
description Designing smart building IoT applications is a complex task. It requires efficiently integrating a broad number of heterogeneous, low-resource devices that adopt lightweight strategies. IoT frameworks, especially if they are standard-based, may help designers to scaffold the applications. OpenFog, established as IEEE 1934 standard, promotes the use of free open source (FOS) technologies and has been identified for use in smart buildings. However, smart building systems may present vulnerabilities, which can put their integrity at risk. Adopting state-of-the-art security mechanisms in this domain is critical but not trivial. It complicates the design and operation of the applications, increasing the cost of the deployed systems. In addition, difficulties may arise in finding qualified cybersecurity personnel. OpenFog identifies the security requirements of the applications, although it does not describe clearly how to implement them. This article presents a scalable architecture, based on the OpenFog reference architecture, to provide security by design in buildings of different sizes. It adopts FOS technologies over low-cost IoT devices. Moreover, it presents guidelines to help developers create secure applications, even if they are not security experts. It also proposes a selection of technologies in different layers to achieve the security dimensions defined in the X.805 ITU-T recommendation. A proof-of-concept Indoor Environment Quality (IEQ) system, based on low-cost smart nodes, was deployed in the Faculty of Engineering of Vitoria-Gasteiz to illustrate the implementation of the presented approach. The operation of the IEQ system was analyzed using software tools frequently used to find vulnerabilities in IoT applications. The use of state-of-the-art security mechanisms such as encryption, certificates, protocol selection and network partitioning/configuration in the OpenFog-based architecture improves smart building security.
publishDate 2024
dc.date.none.fl_str_mv 2024
2024
2024
2024
dc.type.none.fl_str_mv info:eu-repo/semantics/article
format article
dc.identifier.none.fl_str_mv http://hdl.handle.net/10810/69328
url http://hdl.handle.net/10810/69328
dc.language.none.fl_str_mv Inglés
language_invalid_str_mv Inglés
dc.relation.none.fl_str_mv https://www.mdpi.com/2079-9292/13/15/2900
dc.rights.none.fl_str_mv info:eu-repo/semantics/openAccess
http://creativecommons.org/licenses/by/4.0/es/
eu_rights_str_mv openAccess
rights_invalid_str_mv http://creativecommons.org/licenses/by/4.0/es/
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv MDPI
publisher.none.fl_str_mv MDPI
dc.source.none.fl_str_mv reponame:Addi. Archivo Digital para la Docencia y la Investigación
instname:Universidad del País Vasco
instname_str Universidad del País Vasco
reponame_str Addi. Archivo Digital para la Docencia y la Investigación
collection Addi. Archivo Digital para la Docencia y la Investigación
repository.name.fl_str_mv
repository.mail.fl_str_mv
_version_ 1869410070580690944
score 15,81155