Clouds of things need information flow control with hardware roots of trust

Thomas F.J.M. Pasquier, Jatinder Singh, Jean Bacon

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

6 Citations (Scopus)

Abstract

There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demonstrate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.

Original languageEnglish
Title of host publicationProceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages467-470
Number of pages4
ISBN (Electronic)9781467395601
DOIs
Publication statusPublished - 1 Feb 2016
Event7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015 - Vancouver, Canada
Duration: 30 Nov 20153 Dec 2015

Conference

Conference7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015
CountryCanada
CityVancouver
Period30/11/153/12/15

Keywords

  • Hardware Roots of Trust
  • Information Flow Control
  • Internet of Things
  • Provenance
  • Remote Attestation

Fingerprint Dive into the research topics of 'Clouds of things need information flow control with hardware roots of trust'. Together they form a unique fingerprint.

Cite this