Clouds of things need information flow control with hardware roots of trust

Thomas F.J.M. Pasquier; Jatinder Singh; Jean Bacon

doi:10.1109/CloudCom.2015.41

Clouds of things need information flow control with hardware roots of trust

Thomas F.J.M. Pasquier, Jatinder Singh, Jean Bacon

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

8 Citations (Scopus)

Abstract

There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demonstrate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.

Original language	English
Title of host publication	Proceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	467-470
Number of pages	4
ISBN (Electronic)	9781467395601
DOIs	https://doi.org/10.1109/CloudCom.2015.41
Publication status	Published - 1 Feb 2016
Event	7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015 - Vancouver, Canada Duration: 30 Nov 2015 → 3 Dec 2015

Conference

Conference	7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015
Country/Territory	Canada
City	Vancouver
Period	30/11/15 → 3/12/15

Keywords

Hardware Roots of Trust
Information Flow Control
Internet of Things
Provenance
Remote Attestation

Access to Document

10.1109/CloudCom.2015.41

Handle.net

Persistent link

Cite this

@inproceedings{0415586988294b44b300213b4316e824,

title = "Clouds of things need information flow control with hardware roots of trust",

abstract = "There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demonstrate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.",

keywords = "Hardware Roots of Trust, Information Flow Control, Internet of Things, Provenance, Remote Attestation",

author = "Pasquier, \{Thomas F.J.M.\} and Jatinder Singh and Jean Bacon",

year = "2016",

month = feb,

day = "1",

doi = "10.1109/CloudCom.2015.41",

language = "English",

pages = "467--470",

booktitle = "Proceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

note = "7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015 ; Conference date: 30-11-2015 Through 03-12-2015",

}

Pasquier, TFJM, Singh, J & Bacon, J 2016, Clouds of things need information flow control with hardware roots of trust. in Proceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015., 7396195, Institute of Electrical and Electronics Engineers (IEEE), pp. 467-470, 7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015, Vancouver, Canada, 30/11/15. https://doi.org/10.1109/CloudCom.2015.41

Clouds of things need information flow control with hardware roots of trust. / Pasquier, Thomas F.J.M.; Singh, Jatinder; Bacon, Jean.
Proceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015. Institute of Electrical and Electronics Engineers (IEEE), 2016. p. 467-470 7396195.

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

TY - GEN

T1 - Clouds of things need information flow control with hardware roots of trust

AU - Pasquier, Thomas F.J.M.

AU - Singh, Jatinder

AU - Bacon, Jean

PY - 2016/2/1

Y1 - 2016/2/1

N2 - There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demonstrate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.

AB - There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demonstrate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.

KW - Hardware Roots of Trust

KW - Information Flow Control

KW - Internet of Things

KW - Provenance

KW - Remote Attestation

UR - https://www.scopus.com/pages/publications/84964345768

U2 - 10.1109/CloudCom.2015.41

DO - 10.1109/CloudCom.2015.41

M3 - Conference Contribution (Conference Proceeding)

AN - SCOPUS:84964345768

SP - 467

EP - 470

BT - Proceedings - IEEE 7th International Conference on Cloud Computing Technology and Science, CloudCom 2015

PB - Institute of Electrical and Electronics Engineers (IEEE)

T2 - 7th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2015

Y2 - 30 November 2015 through 3 December 2015

ER -

Clouds of things need information flow control with hardware roots of trust

Abstract

Conference

Keywords

Access to Document

Handle.net

Other files and links

Fingerprint

Cite this