Search:
Computing and Library Services - delivering an inspiring information environment

Security Auditing in the Fog

Parkinson, Simon, Qin, Yongrui, Khan, Saad and Vallati, Mauro (2017) Security Auditing in the Fog. In: Proceedings of the Second International Conference on Internet of Things : Data and Cloud Computing (ICC 2017). International Conference Proceedings Series (ICPS) . ACM. ISBN 978-1-4503-4774-7 (In Press)

[img] PDF - Published Version
Restricted to Repository staff only

Download (288kB)
[img] PDF - Accepted Version
Restricted to Repository staff only

Download (279kB)

Abstract

Technology specific expert knowledge is often required to analyse security configurations and determine potential vulnerabilities, but it becomes difficult when it is a new technology such as Fog computing. Furthermore, additional knowledge is also required regarding how the security configuration has been constructed in respect to an organisation's security policies. Traditionally, organisations will often manage their access control permissions relative to their employees needs, posing challenges to administrators. This problem is even exacerbated in Fog computing systems where security configurations are implemented on a large amount of devices at the edges of Internet, and the administrators are required to retain adequate knowledge on how to perform complex administrative tasks. In this paper, a novel approach of translating object-based security configurations in to a graph model is presented. A technique is then developed to autonomously identify vulnerabilities and perform security auditing of large systems without the need for expert knowledge. Throughout the paper, access control configuration data is used as a case study, and empirical analysis is performed on synthetically generated access control permissions.

Item Type: Book Chapter
Additional Information: The second International Conference on Internet of Things, Data and Cloud Computing (ICC 2017) will be held in Cambridge city, Churchill College. University of Cambridge, United Kingdom. 22-23 March 2017.
Subjects: Q Science > QA Mathematics > QA76 Computer software
Schools: Huddersfield Business School
Huddersfield Business School > Centre for Sustainable and Resilient Communities
Related URLs:
Depositing User: Simon Parkinson
Date Deposited: 30 Mar 2017 09:18
Last Modified: 18 Oct 2017 23:24
URI: http://eprints.hud.ac.uk/id/eprint/31651

Downloads

Downloads per month over past year

Repository Staff Only: item control page

View Item View Item

University of Huddersfield, Queensgate, Huddersfield, HD1 3DH Copyright and Disclaimer All rights reserved ©