Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Snap4City, IEEE ATC, Leicester, August 2019 1 Title Paolo Nesi, paolo.nesi@unifi.it https://www.snap4city.org ‐ https://ww...
Snap4City, IEEE ATC, Leicester, August 2019 2 architettura BIG DATA ANALYTICS: AI, MACHINE  LEARNING
Standards and Interoperability Snap4City, Antwerp, 21st August 2019 3 Compliant with: AMQP, COAP, MQTT, OneM2M, HTTP, HTTP...
Snap4City, IEEE ATC, Leicester, August 2019 4 Sentient Solutions Dashboards with IOT Applications for enforcing data drive...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
6 IOT/IOE on the field Snap4City, IEEE ATC, Leicester, August 2019 6 IOE Devices IOT Edge With IOT App distributed Sensors...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Info...
Upcoming SlideShare
Loading in …5
×

of

Privacy and security aspects on a Smart City IoT Platform Slide 1 Privacy and security aspects on a Smart City IoT Platform Slide 2 Privacy and security aspects on a Smart City IoT Platform Slide 3 Privacy and security aspects on a Smart City IoT Platform Slide 4 Privacy and security aspects on a Smart City IoT Platform Slide 5 Privacy and security aspects on a Smart City IoT Platform Slide 6 Privacy and security aspects on a Smart City IoT Platform Slide 7 Privacy and security aspects on a Smart City IoT Platform Slide 8 Privacy and security aspects on a Smart City IoT Platform Slide 9 Privacy and security aspects on a Smart City IoT Platform Slide 10 Privacy and security aspects on a Smart City IoT Platform Slide 11 Privacy and security aspects on a Smart City IoT Platform Slide 12 Privacy and security aspects on a Smart City IoT Platform Slide 13 Privacy and security aspects on a Smart City IoT Platform Slide 14 Privacy and security aspects on a Smart City IoT Platform Slide 15 Privacy and security aspects on a Smart City IoT Platform Slide 16
Upcoming SlideShare
What to Upload to SlideShare
Next
Download to read offline and view in fullscreen.
Technology
Aug. 24, 2019
117 views

0 Likes

Share

Download to read offline

Privacy and security aspects on a Smart City IoT Platform

Download to read offline

Technology
Aug. 24, 2019
117 views

Internet of Things paradigm enables computation and communication in tools that every day everyone uses. The vastness and heterogeneity of devices and the ways they are composed to offer innovative services and scenarios require a challenging vison in interoperability, security and in managing huge quantity of data. Many IoT frameworks and platforms propose to solve these issues, aggregating different sources of information and combine their flow of data in innovative services. Due to the potentially very sensible nature of some of this data, privacy and security aspects have to be taken into account by design and by default. An end-to-end secure solution has to permit the final users to have full control on their personal data and, on the other side, the framework has to support developers in writing applications offering the highest level of security/protection on their data flow. European Commission GDPR also added complexity to this context. In this paper, Snap4City solution to support such level of privacy and security in an IoT scenarios is presented. Snap4City has been developed in the context of Select4Cities PCP project of the European Commission.

License: CC Attribution-NonCommercial-NoDerivs License

Recommended

Related Books

Free with a 30 day trial from Scribd

See all
Bezonomics: How Amazon Is Changing Our Lives and What the World's Best Companies Are Learning from It Brian Dumaine
(4.5/5)
Free
So You Want to Start a Podcast: Finding Your Voice, Telling Your Story, and Building a Community That Will Listen Kristen Meinzer
(3.5/5)
Free
No Filter: The Inside Story of Instagram Sarah Frier
(4.5/5)
Free
Autonomy: The Quest to Build the Driverless Car—And How It Will Reshape Our World Lawrence D. Burns
(5/5)
Free
Live Work Work Work Die: A Journey into the Savage Heart of Silicon Valley Corey Pein
(4/5)
Free
From Gutenberg to Google: The History of Our Future Tom Wheeler
(2/5)
Free
SAM: One Robot, a Dozen Engineers, and the Race to Revolutionize the Way We Build Jonathan Waldman
(5/5)
Free
Talk to Me: How Voice Computing Will Transform the Way We Live, Work, and Think James Vlahos
(3.5/5)
Free
The Future Is Faster Than You Think: How Converging Technologies Are Transforming Business, Industries, and Our Lives Peter H. Diamandis
(5/5)
Free
Everybody Lies: Big Data, New Data, and What the Internet Can Tell Us About Who We Really Are Seth Stephens-Davidowitz
(4/5)
Free
Life After Google: The Fall of Big Data and the Rise of the Blockchain Economy George Gilder
(4/5)
Free
Future Presence: How Virtual Reality Is Changing Human Connection, Intimacy, and the Limits of Ordinary Life Peter Rubin
(4/5)
Free
The Basics of Bitcoins and Blockchains: An Introduction to Cryptocurrencies and the Technology that Powers Them (Cryptography, Crypto Trading, Digital Assets, NFT) Antony Lewis
(3.5/5)
Free
Wizard:: The Life and Times of Nikolas Tesla Marc Seifer
(2.5/5)
Free
On War: With linked Table of Contents Carl von Clausewitz
(4.5/5)
Free
Ninety Percent of Everything: Inside Shipping, the Invisible Industry That Puts Clothes on Your Back, Gas in Your Car, and Food on Your Plate Rose George
(4/5)
Free

Related Audiobooks

Free with a 30 day trial from Scribd

See all
Driven: The Race to Create the Autonomous Car Alex Davies
(4.5/5)
Free
A Brief History of Motion: From the Wheel, to the Car, to What Comes Next Tom Standage
(4.5/5)
Free
An Ugly Truth: Inside Facebook’s Battle for Domination Sheera Frenkel
(4.5/5)
Free
The Quiet Zone: Unraveling the Mystery of a Town Suspended in Silence Stephen Kurczy
(5/5)
Free
System Error: Where Big Tech Went Wrong and How We Can Reboot Rob Reich
(4/5)
Free
The Wires of War: Technology and the Global Struggle for Power Jacob Helberg
(4.5/5)
Free
If Then: How the Simulmatics Corporation Invented the Future Jill Lepore
(4.5/5)
Free
The Science of Time Travel: The Secrets Behind Time Machines, Time Loops, Alternate Realities, and More! Elizabeth Howell
(2.5/5)
Free
Liftoff: Elon Musk and the Desperate Early Days That Launched SpaceX Eric Berger
(5/5)
Free
The Players Ball: A Genius, a Con Man, and the Secret History of the Internet's Rise David Kushner
(4.5/5)
Free
Bitcoin Billionaires: A True Story of Genius, Betrayal, and Redemption Ben Mezrich
(4.5/5)
Free
Lean Out: The Truth About Women, Power, and the Workplace Marissa Orr
(4.5/5)
Free
Uncanny Valley: A Memoir Anna Wiener
(4/5)
Free
Blockchain: The Next Everything Stephen P Williams
(4/5)
Free
A World Without Work: Technology, Automation, and How We Should Respond Daniel Susskind
(4.5/5)
Free
User Friendly: How the Hidden Rules of Design Are Changing the Way We Live, Work, and Play Cliff Kuang
(4/5)
Free

  • Be the first to like this

Privacy and security aspects on a Smart City IoT Platform

  1. 1. Snap4City, IEEE ATC, Leicester, August 2019 1 Title Paolo Nesi, paolo.nesi@unifi.it https://www.snap4city.org ‐ https://www.disit.org Powered by Privacy and security aspects on a Smart City IoT Platform C. Badii, P. Bellini, A. Difino, P. Nesi DISIT Lab, Dept. of Information Engineering, University of Florence, Italy
  2. 2. Snap4City, IEEE ATC, Leicester, August 2019 2 architettura BIG DATA ANALYTICS: AI, MACHINE  LEARNING
  3. 3. Standards and Interoperability Snap4City, Antwerp, 21st August 2019 3 Compliant with: AMQP, COAP, MQTT, OneM2M, HTTP, HTTPS, Rest Call, SMTP,  TCP, UDP, NGSI, LoraWan, TheThingsNetwork, SigFOX, DATEX II, SOAP, WSDL,  Twitter, FaceBook, Telegram, SMS, OLAP, MySQL, Mongo, HBASE, SOLR, SPARQL,  EMAIL, FTP, FTPS, WebSocket, WebSocket Secure, ModBUS, OPC, RS485, WFS,  WMS, ODBC, JDBC, Elastic Search, Phoenix, XML, JSON, GeoJSON, Enfuser FMI,  Local File System, ESP32, OBD2, etc.
  4. 4. Snap4City, IEEE ATC, Leicester, August 2019 4 Sentient Solutions Dashboards with IOT Applications for enforcing data driven and  intelligence Dashboards and AppsIOT and City data World IOT Applications My IOT Devices Big Data Analytics, Artificial Intelligence
  5. 5. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Snap4City, IEEE ATC, Leicester, August 2019 5 User  Story
  6. 6. 6 IOT/IOE on the field Snap4City, IEEE ATC, Leicester, August 2019 6 IOE Devices IOT Edge With IOT App distributed Sensors/ Actuators Sensors/ Actuators Sensors/ Actuators Sensors/ Actuators Sensors/ Actuators Sensors/Actuators Raspberry pi ‐‐ PC: Win,  Linux IOT Directory (1) Registration (0) Sensors & Actuators Internet On Cloud IOT Brokers IOT BrokersIOT Button Mobiles (2) Discovery (1) Registration
  7. 7. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org IOT involved entities Snap4City, IEEE ATC, Leicester, August 2019 7 Data Visualizatio n Cloud  Processor Data Injection Edge Processor Data Sources IoT Devices (sensors, actuactors) Security and Privacy Management Context Brokers IoT Broker IoT App IoT Context Brokers IoT App IoT Edge IoT Directory Registries and  storage Dashboards
  8. 8. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Snap4City, IEEE ATC, Leicester, August 2019 [IOT Edge]        IOT Broker        [IOT Application] Intranet Internet WSs HTTPS Sensors/ Actuators User interface On Browser WSs, HTTPSWSs, HTTPSWSs, HTTPS…….… Dashboard  Engine IOT  Devices Executing local computation Smart City  Knowledge  Base and RT  data Cloud 8End 2 End security Data Shadow
  9. 9. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Major Security and Privacy Requirements • Supporting security among – IOT Brokers, IOT Discovery, IOT Applications, Dashboards, Storage, …. – Authenticated Connections: H2M, M2M – Secure Communications: H2M, M2M – Authorization according to the role and user ID • Deliver Open Software on well known platforms, end‐2‐end secure IOT stack – Arduino, ESP32, Raspberry Pi, Linux, Windows, Android, etc. • GDPR compliant platform:  – getting signed consent from users – Data Type / City Entities are private by default • Values, Devices, Brokers, IOT App, Dashboards, User Profiles, time series, etc. – Management of Data Types: access, delegate/revoke, forget, etc.  – Auditing on Data Type access, etc.  Snap4City, IEEE ATC, Leicester, August 2019 9
  10. 10. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Authetication and Authorization • Authentication is performed via  OpenIDConnect as (SSo) which is based on Oauth – User Registry on LDAP/CRM for user data – Authenticated users have Role of the  LDAP registry – Thus Communication start with SSL/TLS  protocol, sharing a secret via JWT Token • H2M: login is needed • M2M: first time it has to be H2M, then a Refresh Token is asked on the basis of  the first JWT. Snap4City, IEEE ATC, Leicester, August 2019 10
  11. 11. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Different Authentication mechanisms • From proprietary server: – The device are registered and data collected by the proprietary  servers: SigFOX, TheThingsNetwork, etc. – SigFOX: the server provides K1, K2 to read the data or subscribe – TTN: other kind of keys are used for the same purpose • From Open Solutions – K1, K2 can be produced for IOT Device registration, subscription,  etc. – K1, K2, plus SHA1/3 of Certificate to establish TLS connection – Certificate and credentials for the mutual authentications, and TLS Snap4City, IEEE ATC, Leicester, August 2019 11
  12. 12. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org IOT on premise vs on cloud Snap4City, IEEE ATC, Leicester, August 2019 12 On the Field IoT local  solution (on premise) Dashboards IoT Devices (sensors, actuators) IoT Edge IoT App IoT cloud  infrastructure  IoT Firewall (IoT Broker) MicroServices All the other  cloud services  IOT On Premise
  13. 13. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org IOT Devices vs on Cloud Platform Snap4City, IEEE ATC, Leicester, August 2019 13 IoT cloud infrastructure Dashboards Dashboard  Builder IoT Directory IoT Firewall IoT Context Brokerc On the Field IoT Devices (sensors, actuators) IoT App SmartCity API Data Shadow IoT Context Broker MicroServices IoT App All the other  cloud services 
  14. 14. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org More Complete Architecture Snap4City, IEEE ATC, Leicester, August 2019 14 Real World IoT cloud infrastructure Dashboards from cloud Dashboard  Builder MicroServices Knowledge base S SmartCity API Analytics Scheduling IoT  Directory IoT local solution (on premise) IoT Edge (aggregators,   distributors) IoT  App Dashboards (local) Security and Privacy Management IoT  App IoT  App Data Shadow Ownership & Delegation Any other static and  real‐time data sources User registry My Personal Data Users’ Data Context Brokers IoT Firewall IoT Firewall IoT Context Broker Devices’ Data Devices’ Data IoT Devices (sensors, actuators) IoT Context Broker
  15. 15. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.orgCertificate Sec Prot. Snap4City, IEEE ATC, Leicester, August 2019 15
  16. 16. DISIT Lab, Distributed Data Intelligence and Technologies Distributed Systems and Internet Technologies Department of Information Engineering (DINFO) http://www.disit.dinfo.unifi.it http://www.disit.org Conclusions • Issues addressed – Definition and implementation of an end‐2‐end  secure connection model and tools – Release end‐2‐end secure SW as Open Source for major Open and non Open  Platforms for IOT: Android, Arduino, Raspberry pi, Linux, Windows, etc.   – Authentication for personal secure channel connection: H2M, M2M – Support all aspects of GDPR on a large set of Data Types: • Values of sensors, IOT Devices, IOT Brokers, IOT Applications, Personal Data, KPI,  Dashboards, etc. • Snap4City has passed two different PEN Tests performed by two of  the most relevant companies in Europe. • Snap4City is from today an EOSC Smart City IOT as a Service  Snap4City, IEEE ATC, Leicester, August 2019 16

Internet of Things paradigm enables computation and communication in tools that every day everyone uses. The vastness and heterogeneity of devices and the ways they are composed to offer innovative services and scenarios require a challenging vison in interoperability, security and in managing huge quantity of data. Many IoT frameworks and platforms propose to solve these issues, aggregating different sources of information and combine their flow of data in innovative services. Due to the potentially very sensible nature of some of this data, privacy and security aspects have to be taken into account by design and by default. An end-to-end secure solution has to permit the final users to have full control on their personal data and, on the other side, the framework has to support developers in writing applications offering the highest level of security/protection on their data flow. European Commission GDPR also added complexity to this context. In this paper, Snap4City solution to support such level of privacy and security in an IoT scenarios is presented. Snap4City has been developed in the context of Select4Cities PCP project of the European Commission.

Views

Total views

117

On Slideshare

0

From embeds

0

Number of embeds

0

Actions

Downloads

0

Shares

0

Comments

0

Likes

0

×