An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture

•

2 likes•995 views

Slides presented at IEEE International Conference on Internet of Things 2014 (iThings), September 1-3, Taipei, Taiwan, 2014

Software

An Ontology-Based Approach for Helping to Secure the ETSI Machine-to-Machine Architecture
Amelie Gyrard
Christian Bonnet (Eurecom, Mobile Communication)
Karima Boudaoud (I3S, Security)

Semantic-based M2M Architecture
Paper: A Machine-to-Machine Architecture to Merge Semantic Sensor Measurements [Gyrard et al., WWW 2013]
- p 2

Machine-to-Machine (M3) framework: Build IoT applications
- p 3
http://www.sensormeasurement.appspot.com/

Motivation
- p 4
How to secure IoT architectures and applications?
oCommunications
oData
oTechnologies employed
oSecurity properties satisfied
Time-consuming to be familiar with:
oAttacks
oSecurity mechanisms
“Security by design”
Reuse M3 for another purpose: security context
A tool to help choose the best security mechanism fitting our needs

Reuse M3 to secure IoT applications or architectures
- p 5

Security knowledge base
- p 6
Reusing security knowledge:
o24 works referenced in various domains:
IDS, Web, Sensor networks, Smart phones, Network communications, Cryptography
oUse semantic web technologies (ontologies)
Reuse domain knowledge
Reasoning engine
Flexibility
Lack of best practices:
oNot published online
oDomain-specific, Not interlinked
oHeterogeneous terms

LOV4IoT
- p 7
http://www.sensormeasurement.appspot.com/?p=ontologies

The STAC ontology
8
STAC (Security Toolbox: Attacks & Countermeasures)
oOntology is a vocabulary to describe concepts and properties in a particular domain
ohttp://securitytoolbox.appspot.com/stac#
oReferenced by Linked Open Vocabularies (LOV)
Help the developer choose security mechanisms to secure IoT applications.

How to secure heterogeneous technologies?
- p 9

The STAC ontology
10
Paper: The STAC (Security Toolbox: Attacks & Countermeasures) ontology [Gyrard et al., WWW 2013]

The STAC application
A semantic-based application to help the developer to design a secure software:
The STAC ontology
The user interface
11

STAC template
- p 12
http://www.sensormeasurement.appspot.com/?p=stac

- p 14
STAC to secure communications
http://www.sensormeasurement.appspot.com/?p=wireless
http://www.sensormeasurement.appspot.com/?p=sensor

Evaluation
Methodologies
[Noy et al. 2001]: Ontology development 101: A guide to creating your first ontology
Semantic web tools
Oops, TripleChecker, RDF Validator, Vapour,
Linked Open Vocabularies (LOV), Linked Open Data (LOD)
24 security ontologies
More than 14 ontologies are online
User form:
24 responses
Updated STAC with new security domains
- p 15

STAC evaluation form
- p 16
https://docs.google.com/forms/d/1NKiMQPVR6X6Reioud0-WBZu1bmo3T1Ah7PZm9De-apk/viewform

Conclusion & Future works
M3 framework:
Build IoT applications to reason on cross-domain data
STAC
–A security knowledge base
–Helping developers choose security mechanisms to secure IoT applications.
Linked Open Rules to share and reuse rules
17

Thank you!
- p 18
We have more demonstrations for:
STAC
Linked Open Rules
M3 framework
gyrard@eurecom.fr
http://www.sensormeasurement.appspot.com/

30th IEEE International Conference onAdvanced Information Networking and Applications (AINA-2016) March 23-25, 2016, Crans-Montana, Switzerland Connected Smart Cities: Interoperability with SEG 3.0 for the Internet of Things Semantic Interoperability Methodology Linked Open Data Linked Open Vocabularies Linked Open Reasoning Linked Open Services Internet of Things Web of Things Semantic Web of Things Smart cities

SecureIoT Security Knowledge Base

Mariza Konidi

The Security Knowledge Base (SKB) is a single repository that stores, correlates, and provides structured security information from external references in IT security. The SKB creates a knowledge graph that can map given assets to rapidly extract potential vulnerabilities and indicate solutions for mitigation. The SKB embeds all necessary knowledge in one place and keeps it updated from sources like MITRE, NVD, NIST, and CIRCL. It provides a web-based search engine and REST API for advanced use and integration into other software.

Gyrard ssn2014 Helping IoT Application Developers with Sensor-based Linked Op...

Amélie Gyrard

The document proposes the M3 framework to help IoT application developers build interoperable applications that can reason on sensor data. The M3 framework uses the M3 ontology to classify sensor data and extends the SSN ontology. It also develops interoperable domain knowledge graphs by redesigning existing domain ontologies. The framework generates application templates that include sensor-based rules compliant with the M3 ontology and domain knowledge graphs, allowing developers to easily develop applications that can reason across domains. Future work includes automating rule extraction from ontologies and supporting more complex rules.

Sikkerhed og Revision 2009: Skal sikkerhedsmodellen vendes på hovedet?

Jakob Illeborg Pagter

The document discusses new challenges for security in the modern, digital world and how traditional perimeter-based security models may need to be rethought. It outlines six trends - cloud computing, mutual computing, privacy issues, pervasive computing, digital natives, and dynamic change - that present six challenges to security. It argues that security must move to a data-centric model focused on principles of equivalence, distribute-and-rule, and the law of large numbers rather than relying on perimeter defenses. New technical approaches like secure multiparty computation could help address these challenges.

This document provides an overview of the Internet of Things (IoT) and introduces DeviceHive as an open-source M2M communication framework for IoT projects. DeviceHive addresses common IoT project problems such as implementing device logic and communication infrastructure by providing libraries, server deployment options, and APIs. It also includes features for device, data, and user management. Examples of using DeviceHive include controlling Philips Hue lights with Google Glass and analyzing energy consumption data for a utility company. The document provides more information on DeviceHive's website and upcoming training events.

International Conference on Cryptography and Blockchain (CRBL 2021)

ijasuc

The International Conference on Cryptography and Blockchain (CRBL 2021) will take place October 29-30, 2021 in Vienna, Austria. The conference will provide a forum for presenting innovative ideas, approaches, and research related to cryptography and blockchain. Topics will include blockchain foundations, consensus algorithms, privacy, and applications in areas like IoT security. Authors are invited to submit papers by September 18, 2021 for peer review and possible publication in the conference proceedings or related journals.

Rsa report v14

Nicholas Tan

Automation was a major theme at RSA 2017 as startups worked to improve security efficiency through automated penetration testing, security operations center automation, and anomaly detection. This reduces the need for security analysts and improves detection speed and accuracy. Behavioral analytics that learn patterns to identify anomalous behavior were also discussed as a way to recognize zero-day threats that evade signature-based detection. Deception techniques that deploy traps to entice and uncover attacks early were highlighted as a method to reduce data breaches, along with data security solutions that keep information encrypted and protected even if a hack occurs. Biometric startups explored eliminating passwords by using mobile device data and patterns to continuously authenticate users.

International Conference on Cryptography and Blockchain (CRBL 2021)

ijasuc

Prevoty Integri Datasheet

Prevoty

Prevoty Integri is a web application security-as-a-service platform that protects against top cybersecurity threats like SQL injection and cross-site request forgery. It validates all incoming content, queries, and tokens to instantly differentiate trusted from malicious content. Integri reduces the need for dedicated security resources by providing built-in protections through libraries and plugins. It also offers real-time threat intelligence through behavioral monitoring and analytics.

Assisting IoT Projects and Developers in Designing Interoperable Semantic Web...

Amélie Gyrard

Call for Papers - 15th International Conference on Network Security & Applica...

IJNSA Journal

15th International Conference on Network Security & Applications (CNSA 2022) focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this conference is to bring together researchers and practitioners from academia and industry to focus on understanding modern security threats and counter measures and establishing new collaborations in these areas. Authors are solicited to contribute to the conference by submitting articles that illustrate research results, projects, surveying works and industrial experiences that describe significant advances in the areas of Security & its applications.

Andrei Patrascu support letter

Andrei Patrascu

SentryBay, a leading cybersecurity company, supports Andrei Patrascu's application for a fellowship focused on researching new pairings for cryptography. SentryBay is interested in Patrascu's work developing new pairings that could identify vulnerabilities in elliptic curve encryption protocols or enable more secure identity-based encryption. The research has the potential to increase online security by helping the industry avoid curves susceptible to new attacks. SentryBay offers to host meetings and provide staff support and equipment to collaborate on the research during the fellowship.

Hybrid Security Network for Cloud Information Centre (HSNIC)

Peace Asukwo

This project explores developing a software defined network security system for cloud data centers that is scalable, flexible, resilient and cost-effective. A Python script was written to encrypt data at its source using AES encryption for point-to-point connections. However, it does not cover multi-point connections or ensure integrity and confidentiality of stored data. The project facilitates flexible and scalable security service provisioning without modifying physical network devices. It also illustrates how software defined networking, virtualization and APIs relate to cloud data security. An implemented testbed integrates a cloud database with source data encryption using a Python script.

October 2020 meetup

Daliya Spasova

- Elastic Security provides a unified security solution including SIEM, endpoint security, threat hunting, and more powered by the Elastic Stack. - It offers one agent that can instantly collect and protect data from endpoints as well as search across data anywhere for investigation and detection. - The protections are developed with input from Elastic security experts and the open source community to provide unparalleled detection capabilities.

efficient io t management with resilience to unauthorized access to cloud sto...

Venkat Projects

1) Existing cloud-based IoT management systems have limitations regarding storage demands, computation costs, and preventing unauthorized access through illegal key sharing. 2) The proposed system addresses these by removing storage dependency on access policies, outsourcing computation to clouds, and strictly forbidding unauthorized access via illegal key sharing using a novel CPABE construction and user-specific transformation keys. 3) The system architecture involves hardware requirements of an i3 processor, 40GB hard disk and 2GB RAM, and software requirements of a Windows OS, Java/J2EE coding, MySQL database, and the Netbeans IDE.

Cloudbrew 2019 - Threat hunting with the Microsoft Cloud

Tom Janetscheck

With the release of Azure Sentinel, Microsoft has shifted some features from Azure Security Center to their new threat hunting solution. But how do all the security tools Microsoft offers nowadays integrate with each other? How can you find a way through this security jungle? And how do you make sure to have the right tools in place when it comes to protecting your IT environments and hunting threats? Join cloud security expert and Microsoft MVP Tom Janetscheck for this demo-rich session to get all these questions answered and to learn how to protect your resources easily and efficiently.

Secure Cloud - Secure Big Data Processing in Untrusted Clouds

EUBrasilCloudFORUM .

Congresso Sociedade Brasileira de Computação CSBC2016 Porto Alegre (Brazil) Workshop on Cloud Networks & Cloudscape Brazil SecureCloud | Andrey Brito, Federal University of Campina Grande, Brazil Funded jointly by the European Commission (EC) and the Ministry of Science, Technology and Innovation; Portuguese: Ministério da Ciência, Tecnologia e Inovação (MCTI) of Brazil, the EUBrasilCloudFORUM project supports EU-BR collaborative projects in the collection and promotion of their results and activities. The results will be used to draft a research Roadmap on cloud computing, identifying collaboration needs and opportunities between Europe and Brazil for the European Commission and to MCTI, thus contributing to the definition of future cooperation priorities between the two regions.

International Conference on Cryptography and Blockchain (CRBL 2021)

ijujournal

The International Conference on Cryptography and Blockchain (CRBL 2021) will take place October 29-30, 2021 in Vienna, Austria. The conference will provide a forum for presenting innovative ideas, approaches, and research related to cryptography and blockchain. Topics will include blockchain foundations, consensus algorithms, privacy, and applications in areas like IoT security. Authors are invited to submit papers by September 25, 2021 for potential publication in the conference proceedings or selected journals.

International Journal of Network Security & Its Applications (IJNSA) - Curren...

IJNSA Journal

This document summarizes the current issue (March 2022, Volume 14, Number 2) of the International Journal of Network Security & Its Applications, which includes two research articles. The first article presents an efficient secure cryptography scheme for a new machine learning-based routing protocol for mobile internet of things environments. The second article evaluates the effectiveness of different strategies for recognizing and recalling textual passwords.

Dotnet modeling and optimizing the performance- security tradeoff on d-ncs u...

Ecway Technologies

This document discusses modeling and optimizing the performance-security tradeoff in distributed networked control systems (D-NCS) using a coevolutionary genetic algorithm (CGA). It presents a tradeoff model for a system's dynamic performance and its security. The CGA is proposed as a paradigm to optimize this performance-security tradeoff for D-NCS. A Simulink-based testbed demonstrates the effectiveness of using the CGA to efficiently find optimal values in the performance-security tradeoff model for D-NCS.

A 2020 Security strategy for Health Care Providers

Feisal Nanji

This document discusses security strategies for health care providers in 2020 and beyond. It notes that small security teams face challenges managing large, complex, distributed systems. Machine learning and automation are seen as critical to detect threats and stop attacks. While individual point products exist, they often do not integrate well. The document advocates consolidating vendors to reduce costs and improve interoperability. It argues that Cisco and Microsoft have significant security product capabilities due to their vast network visibility and user activity data, positioning them to lead in using machine learning for security. Their integrated platforms could help solve the "silo problem" of disparate security tools.

Effect splus systems-and-network-cluster-results-draft-v1

fcleary

The document summarizes a workshop on models held by the EFFECTS+ Systems & Networks Cluster. The workshop aimed to identify publicly available models, areas of collaboration between projects, and gaps in existing approaches. Presentations covered various modeling approaches from different projects. Results included plans to classify models, publish a survey, hold follow-up meetings, and initiate specific multilateral cooperations between projects in areas like SCADA systems, privacy, services, and security evaluation.

Workshop summary software assurance and trust

fcleary

This document summarizes a technical workshop on software assurance and trust that was held by the Cloud & Services Cluster. The objectives of the workshop were to identify areas of collaboration between projects, publicly available models that could be reused, and gaps in existing approaches. The agenda included presentations from six European projects on topics like security SLAs, auditing, monitoring, and user-centered approaches to trust. Results included the potential for a joint paper and follow-up inter-project meetings on topics such as security SLAs and auditing.

Soc and siem and threat hunting

Vikas Jain

This document provides an overview of SIEM and threat hunting. It defines SOC (security operations center) and its goal of monitoring and analyzing an organization's security posture. It introduces SIEM tools and common terminology like threats, indicators of compromise, indicators of attack, and tactics, techniques and procedures. The document also briefly outlines the cyber kill chain that attackers use and examples of advanced persistent threats.

Trends on Data Graphs & Security for the Internet of Things

Ghislain Atemezing

Web Development in Advanced Threat Prevention

IRJET Journal

This document discusses the development of a web application user interface (UI) for a security operations console and integrating it with real-time data using APIs and React technologies. It describes adding backend security features like preventing access from protected IP addresses and networks and preventing cross-site scripting attacks. The methodology used React, Redux, TypeScript, Ant Design and other frameworks to develop the UI according to a FIGMA design. It also details code to sanitize input fields to protect against XSS attacks and check IP addresses against protected networks and subnets. The pipeline results showed the build passing with all unit tests passing.

What's hot

Hassle-free IoT projects with DeviceHive — Artyom Sorokin (Tech Stage)

Black Sea Summit — IT-conference in Odessa

International Conference on Cryptography and Blockchain (CRBL 2021)

ijasuc

Rsa report v14

Nicholas Tan

International Conference on Cryptography and Blockchain (CRBL 2021)

ijasuc

Prevoty Integri Datasheet

Prevoty

Assisting IoT Projects and Developers in Designing Interoperable Semantic Web...

Amélie Gyrard

Call for Papers - 15th International Conference on Network Security & Applica...

IJNSA Journal

Andrei Patrascu support letter

Andrei Patrascu

Hybrid Security Network for Cloud Information Centre (HSNIC)

Peace Asukwo

October 2020 meetup

Daliya Spasova

efficient io t management with resilience to unauthorized access to cloud sto...

Venkat Projects

Cloudbrew 2019 - Threat hunting with the Microsoft Cloud

Tom Janetscheck

Secure Cloud - Secure Big Data Processing in Untrusted Clouds

EUBrasilCloudFORUM .

International Conference on Cryptography and Blockchain (CRBL 2021)

ijujournal

The International Conference on Cryptography and Blockchain (CRBL 2021) will take place October 29-30, 2021 in Vienna, Austria. The conference will provide a forum for presenting innovative ideas, approaches, and research related to cryptography and blockchain. Topics will include blockchain foundations, consensus algorithms, privacy, and applications in areas like IoT security. Authors are invited to submit papers by September 25, 2021 for potential publication in the conference proceedings or selected journals.

International Journal of Network Security & Its Applications (IJNSA) - Curren...

IJNSA Journal

Dotnet modeling and optimizing the performance- security tradeoff on d-ncs u...

Ecway Technologies

A 2020 Security strategy for Health Care Providers

Feisal Nanji

Effect splus systems-and-network-cluster-results-draft-v1

fcleary

Workshop summary software assurance and trust

fcleary

Soc and siem and threat hunting

Vikas Jain

What's hot (20)

Hassle-free IoT projects with DeviceHive — Artyom Sorokin (Tech Stage)

International Conference on Cryptography and Blockchain (CRBL 2021)

Rsa report v14

International Conference on Cryptography and Blockchain (CRBL 2021)

Prevoty Integri Datasheet

Assisting IoT Projects and Developers in Designing Interoperable Semantic Web...

Call for Papers - 15th International Conference on Network Security & Applica...

Andrei Patrascu support letter

Hybrid Security Network for Cloud Information Centre (HSNIC)

October 2020 meetup

efficient io t management with resilience to unauthorized access to cloud sto...

Cloudbrew 2019 - Threat hunting with the Microsoft Cloud

Secure Cloud - Secure Big Data Processing in Untrusted Clouds

International Conference on Cryptography and Blockchain (CRBL 2021)

International Journal of Network Security & Its Applications (IJNSA) - Curren...

Dotnet modeling and optimizing the performance- security tradeoff on d-ncs u...

A 2020 Security strategy for Health Care Providers

Effect splus systems-and-network-cluster-results-draft-v1

Workshop summary software assurance and trust

Soc and siem and threat hunting

Similar to An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture

Trends on Data Graphs & Security for the Internet of Things

Ghislain Atemezing

Web Development in Advanced Threat Prevention

IRJET Journal

Product security by Blockchain, AI and Security Certs

LabSharegroup

Three themes You need to think about Product Security — and some tips for How to Do It I have been working with software security laboratories and IT security firms for years. I have talked with clients, read and watched dozens of articles/videos and talked with several experts about product security themes, future, technologies. The three themes are: Is the blockchain the new technology of trust? Blockchain has the potential to transform industries. However, some security experts raised questions: If blockchain is broadly used in technology solutions will security standards be adopted? How to protect the cryptographic keys that allow access to the blockchain applications? Although it is true that the potential is huge such as securing IoT nodes, edge devices with authentication, improved confidentiality and data integrity, disrupting current PKI systems, reducing DDoS attacks etc. AI (Machine Learning, Deep Learning, Reinforcement Learning algorithm) potential in Product Security Machine learning can help in creating products that analyse threats and respond to attacks and security incidents. There are several repositories on GitHub or open-source codes by IBM available for developers. Deep learning networks are rapidly growing due to cheap cloud GPU services and after Reinforcement learning algorithm’s last success nobody knows the upper limit. Product Security by International security standards and practices The present, future, and developmental orientations of independent third party certificates Industry. How can the international standards answer the rapid growth of new technologies and maintain secure applications in IoT, Blockchain or AI-driven industries? Are IT products reliable, secure and will they stay that way? I would like to explain Product Security in a simple way. My goal is the introduction of product security for Tech startups, fast-growing Tech firms. Furthermore, I would like to emphasize the benefits of product security certification.

Keynote WFIoT2019 - Data Graph, Knowledge Graphs Ontologies, Internet of Thin...

Amélie Gyrard

Keynote “Trends on Data Graphs & Security for the Internet of Things” (Extended Version) #WF-IoT World Forum Internet of Things Workshop on #Security and #Privacy for #InternetofThings and Cyber-Physical Systems #CPS #Security #Toolbox #Attacks and #Countermeasures #STAC #Security #KnowledgeGraphs #Ontologies Speaker: Dr. Ghislain Atemezing(Research & Development Director, MONDECA, Paris, France) @gatemezing Credits: Dr. Amelie Gyrard (Kno.e.sis, Wright State University, Ohio, USA)

Advance security in cloud computing for military weapons

IRJET Journal

This document proposes a system to securely transmit military weapon launch codes through cloud storage using multiple security techniques. The system uses steganography to hide launch codes in image captchas. Visual cryptography is then used to split the captcha images into shares distributed to authorized users. Each share undergoes image encryption and watermarking before being sent via email. To obtain the launch code, users decrypt their shares, verify the watermarks through de-watermarking, and use visual cryptography to reconstruct the original captcha and extract the hidden launch code text. The proposed multi-layered approach aims to securely transmit sensitive military information through cloud storage.

Designing Cross-Domain Semantic Web of Things Applications

Amélie Gyrard

The document discusses designing cross-domain semantic web of things applications. It introduces challenges including how to interpret IoT data, combine data from different domains, and reuse domain knowledge. The proposed M3 framework addresses these challenges through components like a SWoT generator template, M3 language and ontology, sensor-based linked open rules, and linked open vocabularies for IoT. Evaluations show the framework helps developers build semantic applications and interprets data efficiently while reusing interoperable domain knowledge. The framework has potential applications in domains like health, tourism and transportation.

Security and Privacy Big Challenges in Internet of things

IRJET Journal

This document discusses security and privacy challenges with Internet of Things (IoT) systems. It notes that IoT provides broad functionality but also raises important challenges regarding privacy and security. Some key issues discussed include insufficient authentication, lack of transport encryption, insecure interfaces, default credentials, lack of secure coding practices, and privacy concerns regarding personal data collection. The document recommends approaches to address these challenges, such as base device analysis, network traffic verification, secure code reviews, and end-to-end penetration testing.

Android Security: A Survey of Security Issues and Defenses

IRJET Journal

This document discusses security issues and defenses for Android systems. It provides an overview of the Android architecture including components like the Linux kernel, libraries, Dalvik Virtual Machine, and permissions model. It then discusses some key Android security issues like the difficulty of verifying applications, malware exploiting vulnerabilities, and privacy leaks. Finally, it describes how researchers have proposed various security mechanisms like static analysis, dynamic analysis, and sandboxing to help detect malware and defend Android systems.

CICS: Cloud–Internet Communication Security Framework for the Internet of Sma...

AlAtfat

This document proposes a Cloud-Internet Communication Security (CICS) framework to provide secure communication among smart devices connected to the internet. The framework has four layers - a presentation layer on smart devices, a communication security layer providing encryption/decryption, a ubiquitous network layer, and a cloud layer. The cloud layer collects encrypted data from devices, processes it, and stores it securely. This framework aims to address security challenges like attacks that could disrupt services or cause denial of service when smart devices communicate using cloud computing.

Computer Science Dissertation Topic Ideas For Phd Scholar - Phdassistance

PhD Assistance

Dissertations are among the most important pieces of work which students complete at university. And they allow you to work individually and on something that truly attracts you. Computer science is a hot field for researchers. Many topic ideas can be generated for a dissertation in this special branch of engineering. Ph.D. Assistance serves as an external mentor to brainstorm your idea and translate that into a research model. Hiring a mentor or tutor is common and therefore let your research committee know about the same. We do not offer any writing services without the involvement of the researcher. Learn More: https://bit.ly/3bWsGpz Contact Us: Website: https://www.phdassistance.com/ UK NO: +44–1143520021 India No: +91–4448137070 WhatsApp No: +91 91769 66446 Email: info@phdassistance.com

A Novel Security Approach for Communication using IOT

IJEACS

The Internet of Things (IOT) is the arrangement of physical articles or "things" introduced with equipment, programming, sensors, and framework accessibility, which enables these things to accumulate and exchange data. Here outlining security convention for the Internet of Things, and execution of this relating security convention on the inserted gadgets. This convention will cover the honesty of messages and verification of every customer by giving a productive confirmation component. By this venture the protected correspondence is executed on implanted gadgets.

Br36413417

IJERA Editor

International Journal of Engineering Research and Applications (IJERA) is an open access online peer reviewed international journal that publishes research and review articles in the fields of Computer Science, Neural Networks, Electrical Engineering, Software Engineering, Information Technology, Mechanical Engineering, Chemical Engineering, Plastic Engineering, Food Technology, Textile Engineering, Nano Technology & science, Power Electronics, Electronics & Communication Engineering, Computational mathematics, Image processing, Civil Engineering, Structural Engineering, Environmental Engineering, VLSI Testing & Low Power VLSI Design etc.

Using Computing Methods to Secure VANET

Dr.Irshad Ahmed Sumra

This document summarizes Dr. I.A. Sumra's research on using computing methods to secure vehicular ad hoc networks (VANETs). It discusses how VANETs work and their safety and non-safety applications. It also outlines key security requirements for VANETs like identification, authentication, privacy, and availability. The document then reviews various computing methods that could help secure VANETs, including cloud computing, grid computing, soft computing, trusted computing, quantum computing, pervasive computing, and their relationship to addressing security challenges in VANETs posed by dynamic topologies and attacker behaviors.

Submit Your Research Articles - International Journal of Network Security & I...

IJNSA Journal

The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.

Secure hash based distributed framework for utpc based cloud authorization

IAEME Publication

This document summarizes a research paper that proposes a secure distributed framework for cloud authorization using unit transaction permission coins (UTPCs). The framework uses hash functions like SHA and MD5 to generate unique UTPCs on Android smartphones based on device identifiers. These UTPCs are used for user authentication to access cloud services. The framework aims to provide lightweight and compatible security for real-time cloud applications. It discusses security challenges with cloud computing and sensor networks, and proposes generating UTPCs through a nested hashing process as a security token for cloud user authorization.

Secure hash based distributed framework for utpc based cloud authorization

IAEME Publication

This document discusses secure authorization for cloud computing using smartphones. It proposes a distributed framework that uses a Unit Transaction Permission Coin (UTPC) as a security token for cloud user authorization. The UTPC is generated using a hash function like SHA or MD5, making it difficult for intruders to break. The framework registers and authenticates trusted smartphone devices using their IMEI and IMSI identifiers in an untrusted computing environment. The resulting UTPC-based authorization method is lightweight and compatible with real-time cloud applications.

SCADA Cyber Sec | ISACA 2013 | Patricia Watson

Patricia M Watson

This document provides an overview of Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS), including fundamentals, evolution over time, vulnerabilities, security frameworks, good practices, and resources. It defines SCADA/ICS, describes how they have become more interconnected, lists vulnerabilities like outdated systems and remote access, outlines security standards like NIST and NERC, recommends practices like segmentation and patching, and provides example frameworks and resources.

SECURITY AND PRIVACY AWARE PROGRAMMING MODEL FOR IOT APPLICATIONS IN CLOUD EN...

ijccsa

This document summarizes a research paper on privacy-preserving techniques for IoT data in cloud environments. It introduces two differential privacy algorithms: 1) Generic differential privacy (GenDP) which provides generalized privacy protection for homogeneous and heterogeneous IoT metadata through data portioning. 2) Cluster-based differential privacy which groups similar data into clusters before defining classifiers to validate privacy. The paper evaluates these techniques and finds the cluster-based approach offers better security than customized interactive algorithms while maintaining data utility. Overall, the study presents new differential privacy methods for anonymizing IoT metadata stored in the cloud.

MITx_Cyber security_Syllabus

Prakash Prasad ✔

This document outlines the modules, topics, and faculty for a cyber security course. The course covers 5 modules: 1) Introduction; 2) Systems Security; 3) Cryptography and Network; 4) Case Studies; and 5) Policy. Module 1 provides an overview of cybersecurity challenges and opportunities. Module 2 surveys system development security including hardware architectures, operating systems, program verification, and secure programming languages. Module 3 focuses on cryptography, network security, and multi-party computation. Module 4 discusses security solutions for domains like disk encryption, resilient software, web applications, and mobile phones. Module 5 examines the policy aspects of cybersecurity and the role of public policy.

Ontology-based context-sensitive software security knowledge management model...

IJECEIAES

This document discusses an ontology-based context-sensitive software security knowledge management modeling approach. It begins with an introduction describing the need for secure software development practices and security management systems. It then reviews related work incorporating ontologies and context modeling for software security. The proposed method involves an ontology-based context model with two parts: a software security domain model and an application context model. It describes the components of each model and establishes a hierarchical relationship between them. Finally, it discusses criteria for context-driven security modeling, including usability and quality. The overall aim is to develop a framework that assists practitioners in software security analysis and decision making based on application context.

Similar to An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture (20)

Trends on Data Graphs & Security for the Internet of Things

Web Development in Advanced Threat Prevention

Product security by Blockchain, AI and Security Certs

Keynote WFIoT2019 - Data Graph, Knowledge Graphs Ontologies, Internet of Thin...

Advance security in cloud computing for military weapons

Designing Cross-Domain Semantic Web of Things Applications

Security and Privacy Big Challenges in Internet of things

Android Security: A Survey of Security Issues and Defenses

CICS: Cloud–Internet Communication Security Framework for the Internet of Sma...

Computer Science Dissertation Topic Ideas For Phd Scholar - Phdassistance

A Novel Security Approach for Communication using IOT

Br36413417

Using Computing Methods to Secure VANET

Submit Your Research Articles - International Journal of Network Security & I...

Secure hash based distributed framework for utpc based cloud authorization

SCADA Cyber Sec | ISACA 2013 | Patricia Watson

SECURITY AND PRIVACY AWARE PROGRAMMING MODEL FOR IOT APPLICATIONS IN CLOUD EN...

MITx_Cyber security_Syllabus

Ontology-based context-sensitive software security knowledge management model...

More from Amélie Gyrard

Slides chase 2019 connected health conference - thursday 26 september 2019 -...

Amélie Gyrard

Internet of Robotic Things Ontology catalog, knowledge extraction IEEE P1872....

Amélie Gyrard

Defining iot.schema.org: Using Knowledge Extraction from Existing IoT-based ...

Amélie Gyrard

Concept extraction from the web of things (3)

Amélie Gyrard

This document discusses a study that analyzed 14 popular Internet of Things (IoT) ontologies to identify commonly used concepts. It extracted terms from the ontologies and calculated term frequencies. It then used word embedding and k-means clustering to group related terms and identify popular concept clusters. The clusters were manually analyzed to assign concept names. The study found only low reuse of concepts across ontologies and aims to help standardize IoT vocabulary.

Personalized health knowledge graph ckg workshop - iswc 2018 (2)

Amélie Gyrard

The document discusses developing a Personalized Health Knowledge Graph (PHKG) to support personalized preventative healthcare applications. PHKG integrates medical knowledge and personal health data to provide context-specific and personalized insights. It proposes an architecture with a knowledge graph, rule-based inference engine, and integration of knowledge from ontology catalogs. Challenges include modeling personalization/context, analyzing IoT data, and reusing knowledge from existing health resources. The solution is demonstrated for asthma management using the KHealth dataset and ontologies. Future work includes additional disease cases and dynamic knowledge graph evolution.

Knowledge Extraction for the Web of Things (KE4WoT) Challenge: Co-located wit...

Amélie Gyrard

Toward a Semantic Web of Vehicles

Amélie Gyrard

FiCloud2016 lov4iot extended

Amélie Gyrard

1) LOV4IoT is an extension of the Linked Open Vocabularies (LOV) catalogue that references over 300 ontology-based Internet of Things projects across numerous domains to encourage reuse of existing domain knowledge. 2) LOV4IoT provides an HTML user interface and web services to automatically compute statistics about the projects in its dataset, such as the number per domain. 3) The goal of LOV4IoT is to extract reusable domain knowledge from the referenced ontologies and datasets, such as a dictionary to unify IoT data and rules to interpret sensor data, to help developers design semantic-based IoT applications.

FiCloud2016 lov4iot second life ontology

Amélie Gyrard

1) LOV4IoT is an extension of Linked Open Vocabularies that classifies over 300 ontology-based Internet of Things projects, ontologies, datasets, rules, technologies, sensors and domains to encourage reuse of existing domain knowledge. 2) The Machine-to-Machine Measurement framework and FIESTA-IoT ontology use case demonstrate how LOV4IoT can be used to unify IoT data and domain knowledge from various sources to build interoperable semantic-based IoT applications. 3) By extracting, combining and aligning domain ontologies, LOV4IoT aims to lower the barrier for developers to learn semantic web technologies and design IoT applications that can interpret sensor

A Unified Semantic Engine for Internet of Things and Smart Cities: From Senso...

Amélie Gyrard

Fi cloudpresentationgyrardaugust2015 v2

Amélie Gyrard

Cross-Domain Internet of Things Application Development: M3 Framework and Evaluation FiCloud 24-26 August 2015, Rome, Italy Semantic Web technologies, Semantic Interoperability, Semantic Web Of Things (SWoT), Internet of Things (IoT), Web of Things (WoT), Machine to Machine (M2M), Ubiquitous Computing, Pervasive Computing, Context Awareness Linked Open Vocabularies for Internet of Things (LOV4IoT), Sensor-based Linked Open Rules (S-LOR), Machine-to-Machine Measurement (M3) framework, sharing and reusing domain knowledge

Enrich Machine-to-Machine Data with Semantic Web Technologies for Cross-Domai...

Amélie Gyrard

This document proposes the M3 approach to enrich machine-to-machine data with semantic web technologies for cross-domain applications. The M3 ontology serves as a hub connecting various domain ontologies and datasets. Rules are used to deduce new knowledge from the enriched data. Two scenarios are described that combine health and weather data, and weather and emotion data. The goal is to enable reasoning across domains and build cross-domain machine-to-machine applications.

An Ontology to Semantically Annotate the Machine-to-Machine (M2M) Device Meas...

Amélie Gyrard

More from Amélie Gyrard (13)

Slides chase 2019 connected health conference - thursday 26 september 2019 -...

Internet of Robotic Things Ontology catalog, knowledge extraction IEEE P1872....

Defining iot.schema.org: Using Knowledge Extraction from Existing IoT-based ...

Concept extraction from the web of things (3)

Personalized health knowledge graph ckg workshop - iswc 2018 (2)

Knowledge Extraction for the Web of Things (KE4WoT) Challenge: Co-located wit...

Toward a Semantic Web of Vehicles

FiCloud2016 lov4iot extended

FiCloud2016 lov4iot second life ontology

A Unified Semantic Engine for Internet of Things and Smart Cities: From Senso...

Fi cloudpresentationgyrardaugust2015 v2

Enrich Machine-to-Machine Data with Semantic Web Technologies for Cross-Domai...

An Ontology to Semantically Annotate the Machine-to-Machine (M2M) Device Meas...

Recently uploaded

Unveiling the Advantages of Agile Software Development.pdf

brainerhub1

E-commerce Development Services- Hornet Dynamics

Hornet Dynamics

Using Query Store in Azure PostgreSQL to Understand Query Performance

Grant Fritchey

8 Best Automated Android App Testing Tool and Framework in 2024.pdf

kalichargn70th171

INTRODUCTION TO AI CLASSICAL THEORY TARGETED EXAMPLES

anfaltahir1010

Image: Include an image that represents the concept of precision, such as a AI helix or a futuristic healthcare setting. Objective: Provide a foundational understanding of precision medicine and its departure from traditional approaches Role of theory: Discuss how genomics, the study of an organism's complete set of AI , plays a crucial role in precision medicine. Customizing treatment plans: Highlight how genetic information is used to customize treatment plans based on an individual's genetic makeup. Examples: Provide real-world examples of successful application of AI such as genetic therapies or targeted treatments. Importance of molecular diagnostics: Explain the role of molecular diagnostics in identifying molecular and genetic markers associated with diseases. Biomarker testing: Showcase how biomarker testing aids in creating personalized treatment plans. Content: • Ethical issues: Examine ethical concerns related to precision medicine, such as privacy, consent, and potential misuse of genetic information. • Regulations and guidelines: Present examples of ethical guidelines and regulations in place to safeguard patient rights. • Visuals: Include images or icons representing ethical considerations. Content: • Ethical issues: Examine ethical concerns related to precision medicine, such as privacy, consent, and potential misuse of genetic information. • Regulations and guidelines: Present examples of ethical guidelines and regulations in place to safeguard patient rights. • Visuals: Include images or icons representing ethical considerations. Content: • Ethical issues: Examine ethical concerns related to precision medicine, such as privacy, consent, and potential misuse of genetic information. • Regulations and guidelines: Present examples of ethical guidelines and regulations in place to safeguard patient rights. • Visuals: Include images or icons representing ethical considerations. Real-world case study: Present a detailed case study showcasing the success of precision medicine in a specific medical scenario. Patient's journey: Discuss the patient's journey, treatment plan, and outcomes. Impact: Emphasize the transformative effect of precision medicine on the individual's health. Objective: Ground the presentation in a real-world example, highlighting the practical application and success of precision medicine. Data challenges: Address the challenges associated with managing large sets of patient data in precision medicine. Technological solutions: Discuss technological innovations and solutions for handling and analyzing vast datasets. Visuals: Include graphics representing data management challenges and technological solutions. Objective: Acknowledge the data-related challenges in precision medicine and highlight innovative solutions. Data challenges: Address the challenges associated with managing large sets of patient data in precision medicine. Technological solutions: Discuss technological innovations and solutions

Migration From CH 1.0 to CH 2.0 and Mule 4.6 & Java 17 Upgrade.pptx

ervikas4

14 th Edition of International conference on computer vision

ShulagnaSarkar2

About the event 14th Edition of International conference on computer vision Computer conferences organized by ScienceFather group. ScienceFather takes the privilege to invite speakers participants students delegates and exhibitors from across the globe to its International Conference on computer conferences to be held in the Various Beautiful cites of the world. computer conferences are a discussion of common Inventions-related issues and additionally trade information share proof thoughts and insight into advanced developments in the science inventions service system. New technology may create many materials and devices with a vast range of applications such as in Science medicine electronics biomaterials energy production and consumer products. Nomination are Open!! Don't Miss it Visit: computer.scifat.com Award Nomination: https://x-i.me/ishnom Conference Submission: https://x-i.me/anicon For Enquiry: Computer@scifat.com

Top Benefits of Using Salesforce Healthcare CRM for Patient Management.pdf

VALiNTRY360

Salesforce Healthcare CRM, implemented by VALiNTRY360, revolutionizes patient management by enhancing patient engagement, streamlining administrative processes, and improving care coordination. Its advanced analytics, robust security, and seamless integration with telehealth services ensure that healthcare providers can deliver personalized, efficient, and secure patient care. By automating routine tasks and providing actionable insights, Salesforce Healthcare CRM enables healthcare providers to focus on delivering high-quality care, leading to better patient outcomes and higher satisfaction. VALiNTRY360's expertise ensures a tailored solution that meets the unique needs of any healthcare practice, from small clinics to large hospital systems. For more info visit us https://valintry360.com/solutions/health-life-sciences

J-Spring 2024 - Going serverless with Quarkus, GraalVM native images and AWS ...

Bert Jan Schrijver

UI5con 2024 - Keynote: Latest News about UI5 and it’s Ecosystem

Peter Muessig

UI5con 2024 - Bring Your Own Design System

Peter Muessig

How do you combine the OpenUI5/SAPUI5 programming model with a design system that makes its controls available as Web Components? Since OpenUI5/SAPUI5 1.120, the framework supports the integration of any Web Components. This makes it possible, for example, to natively embed own Web Components of your design system which are created with Stencil. The integration embeds the Web Components in a way that they can be used naturally in XMLViews, like with standard UI5 controls, and can be bound with data binding. Learn how you can also make use of the Web Components base class in OpenUI5/SAPUI5 to also integrate your Web Components and get inspired by the solution to generate a custom UI5 library providing the Web Components control wrappers for the native ones.

Oracle Database 19c New Features for DBAs and Developers.pptx

Remote DBA Services

Baha Majid WCA4Z IBM Z Customer Council Boston June 2024.pdf

Baha Majid

IBM watsonx Code Assistant for Z, our latest Generative AI-assisted mainframe application modernization solution. Mainframe (IBM Z) application modernization is a topic that every mainframe client is addressing to various degrees today, driven largely from digital transformation. With generative AI comes the opportunity to reimagine the mainframe application modernization experience. Infusing generative AI will enable speed and trust, help de-risk, and lower total costs associated with heavy-lifting application modernization initiatives. This document provides an overview of the IBM watsonx Code Assistant for Z which uses the power of generative AI to make it easier for developers to selectively modernize COBOL business services while maintaining mainframe qualities of service.

KuberTENes Birthday Bash Guadalajara - Introducción a Argo CD

rodomar2

Safelyio Toolbox Talk Softwate & App (How To Digitize Safety Meetings)

safelyiotech

Consistent toolbox talks are critical for maintaining workplace safety, as they provide regular opportunities to address specific hazards and reinforce safe practices. These brief, focused sessions ensure that safety is a continual conversation rather than a one-time event, which helps keep safety protocols fresh in employees' minds. Studies have shown that shorter, more frequent training sessions are more effective for retention and behavior change compared to longer, infrequent sessions. Engaging workers regularly, toolbox talks promote a culture of safety, empower employees to voice concerns, and ultimately reduce the likelihood of accidents and injuries on site. The traditional method of conducting safety talks with paper documents and lengthy meetings is not only time-consuming but also less effective. Manual tracking of attendance and compliance is prone to errors and inconsistencies, leading to gaps in safety communication and potential non-compliance with OSHA regulations. Switching to a digital solution like Safelyio offers significant advantages. Safelyio automates the delivery and documentation of safety talks, ensuring consistency and accessibility. The microlearning approach breaks down complex safety protocols into manageable, bite-sized pieces, making it easier for employees to absorb and retain information. This method minimizes disruptions to work schedules, eliminates the hassle of paperwork, and ensures that all safety communications are tracked and recorded accurately. Ultimately, using a digital platform like Safelyio enhances engagement, compliance, and overall safety performance on site. https://safelyio.com/

DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS

Tier1 app

Are you ready to unlock the secrets hidden within Java thread dumps? Join us for a hands-on session where we'll delve into effective troubleshooting patterns to swiftly identify the root causes of production problems. Discover the right tools, techniques, and best practices while exploring *real-world case studies of major outages* in Fortune 500 enterprises. Engage in interactive lab exercises where you'll have the opportunity to troubleshoot thread dumps and uncover performance issues firsthand. Join us and become a master of Java thread dump analysis!

Preparing Non - Technical Founders for Engaging a Tech Agency

ISH Technologies

Preparing non-technical founders before engaging a tech agency is crucial for the success of their projects. It starts with clearly defining their vision and goals, conducting thorough market research, and gaining a basic understanding of relevant technologies. Setting realistic expectations and preparing a detailed project brief are essential steps. Founders should select a tech agency with a proven track record and establish clear communication channels. Additionally, addressing legal and contractual considerations and planning for post-launch support are vital to ensure a smooth and successful collaboration. This preparation empowers non-technical founders to effectively communicate their needs and work seamlessly with their chosen tech agency.Visit our site to get more details about this. Contact us today www.ishtechnologies.com.au

ACE - Team 24 Wrapup event at ahmedabad.

Maitrey Patel

一比一原版(USF毕业证)旧金山大学毕业证如何办理

dakas1

USF硕士毕业证成绩单【微信95270640】一比一伪造旧金山大学文凭@假冒USF毕业证成绩单+Q微信95270640办理USF学位证书@仿造USF毕业文凭证书@购买旧金山大学毕业证成绩单USF真实使馆认证/真实留信认证回国人员证明 #一整套旧金山大学文凭证件办理#—包含旧金山大学旧金山大学本科毕业证成绩单学历认证|使馆认证|归国人员证明|教育部认证|留信网认证永远存档教育部学历学位认证查询办理国外文凭国外学历学位认证#我们提供全套办理服务。一整套留学文凭证件服务：一：旧金山大学旧金山大学本科毕业证成绩单毕业证 #成绩单等全套材料从防伪到印刷水印底纹到钢印烫金二：真实使馆认证（留学人员回国证明）使馆存档三：真实教育部认证教育部存档教育部留服网站永久可查四：留信认证留学生信息网站永久可查国外毕业证学位证成绩单办理方法： 1客户提供办理旧金山大学旧金山大学本科毕业证成绩单信息：姓名生日专业学位毕业时间等（如信息不确定可以咨询顾问：我们有专业老师帮你查询）； 2开始安排制作毕业证成绩单电子图； 3毕业证成绩单电子版做好以后发送给您确认； 4毕业证成绩单电子版您确认信息无误之后安排制作成品； 5成品做好拍照或者视频给您确认； 6快递给客户（国内顺丰国外DHLUPS等快读邮寄）。教育部文凭学历认证认证的用途：如果您计划在国内发展那么办理国内教育部认证是必不可少的。事业性用人单位如银行国企公务员在您应聘时都会需要您提供这个认证。其他私营 #外企企业无需提供！办理教育部认证所需资料众多且烦琐所有材料您都必须提供原件我们凭借丰富的经验帮您快速整合材料让您少走弯路。实体公司专业为您服务如有需要请联系我: 微信95270640奈一次次令他失望山娃今年岁上五年级识得很多字从走出小屋开始山娃就知道父亲的家和工地共有一个很动听的名字——天河工地的底层空空荡荡很宽阔很凉爽在地上铺上报纸和水泥袋父亲和工人们中午全睡在地上地面坑坑洼洼山娃曾多次绊倒过也曾有长铁钉穿透凉鞋刺在脚板上但山娃不怕工地上也常有五六个从乡下来的小学生他们的父母亲也是高楼上的建筑工人小伙伴来自不同省份都操着带有浓重口音的普通话可不知为啥山娃不仅很快与他们熟识了

Malibou Pitch Deck For Its €3M Seed Round

sjcobrien

Recently uploaded (20)

Unveiling the Advantages of Agile Software Development.pdf

E-commerce Development Services- Hornet Dynamics

Using Query Store in Azure PostgreSQL to Understand Query Performance

8 Best Automated Android App Testing Tool and Framework in 2024.pdf

INTRODUCTION TO AI CLASSICAL THEORY TARGETED EXAMPLES

Migration From CH 1.0 to CH 2.0 and Mule 4.6 & Java 17 Upgrade.pptx

14 th Edition of International conference on computer vision

Top Benefits of Using Salesforce Healthcare CRM for Patient Management.pdf

J-Spring 2024 - Going serverless with Quarkus, GraalVM native images and AWS ...

UI5con 2024 - Keynote: Latest News about UI5 and it’s Ecosystem

UI5con 2024 - Bring Your Own Design System

Oracle Database 19c New Features for DBAs and Developers.pptx

Baha Majid WCA4Z IBM Z Customer Council Boston June 2024.pdf

KuberTENes Birthday Bash Guadalajara - Introducción a Argo CD

Safelyio Toolbox Talk Softwate & App (How To Digitize Safety Meetings)

DECODING JAVA THREAD DUMPS: MASTER THE ART OF ANALYSIS

Preparing Non - Technical Founders for Engaging a Tech Agency

ACE - Team 24 Wrapup event at ahmedabad.

一比一原版(USF毕业证)旧金山大学毕业证如何办理

Malibou Pitch Deck For Its €3M Seed Round

An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture

1. An Ontology-Based Approach for Helping to Secure the ETSI Machine-to-Machine Architecture Amelie Gyrard Christian Bonnet (Eurecom, Mobile Communication) Karima Boudaoud (I3S, Security)

2. Semantic-based M2M Architecture Paper: A Machine-to-Machine Architecture to Merge Semantic Sensor Measurements [Gyrard et al., WWW 2013] - p 2

3. Machine-to-Machine (M3) framework: Build IoT applications - p 3 http://www.sensormeasurement.appspot.com/

4. Motivation - p 4 How to secure IoT architectures and applications? oCommunications oData oTechnologies employed oSecurity properties satisfied Time-consuming to be familiar with: oAttacks oSecurity mechanisms “Security by design” Reuse M3 for another purpose: security context A tool to help choose the best security mechanism fitting our needs

5. Reuse M3 to secure IoT applications or architectures - p 5

6. Security knowledge base - p 6 Reusing security knowledge: o24 works referenced in various domains: IDS, Web, Sensor networks, Smart phones, Network communications, Cryptography oUse semantic web technologies (ontologies) Reuse domain knowledge Reasoning engine Flexibility Lack of best practices: oNot published online oDomain-specific, Not interlinked oHeterogeneous terms

7. LOV4IoT - p 7 http://www.sensormeasurement.appspot.com/?p=ontologies

8. The STAC ontology 8 STAC (Security Toolbox: Attacks & Countermeasures) oOntology is a vocabulary to describe concepts and properties in a particular domain ohttp://securitytoolbox.appspot.com/stac# oReferenced by Linked Open Vocabularies (LOV) Help the developer choose security mechanisms to secure IoT applications.

9. How to secure heterogeneous technologies? - p 9

10. The STAC ontology 10 Paper: The STAC (Security Toolbox: Attacks & Countermeasures) ontology [Gyrard et al., WWW 2013]

11. The STAC application A semantic-based application to help the developer to design a secure software: The STAC ontology The user interface 11

12. STAC template - p 12 http://www.sensormeasurement.appspot.com/?p=stac

13. Security properties - p 13

14. - p 14 STAC to secure communications http://www.sensormeasurement.appspot.com/?p=wireless http://www.sensormeasurement.appspot.com/?p=sensor

15. Evaluation Methodologies [Noy et al. 2001]: Ontology development 101: A guide to creating your first ontology Semantic web tools Oops, TripleChecker, RDF Validator, Vapour, Linked Open Vocabularies (LOV), Linked Open Data (LOD) 24 security ontologies More than 14 ontologies are online User form: 24 responses Updated STAC with new security domains - p 15

16. STAC evaluation form - p 16 https://docs.google.com/forms/d/1NKiMQPVR6X6Reioud0-WBZu1bmo3T1Ah7PZm9De-apk/viewform

17. Conclusion & Future works M3 framework: Build IoT applications to reason on cross-domain data STAC –A security knowledge base –Helping developers choose security mechanisms to secure IoT applications. Linked Open Rules to share and reuse rules 17

18. Thank you! - p 18 We have more demonstrations for: STAC Linked Open Rules M3 framework gyrard@eurecom.fr http://www.sensormeasurement.appspot.com/

An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture

Similar to An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture (20)

More from Amélie Gyrard

More from Amélie Gyrard (13)

Recently uploaded

Recently uploaded (20)

An ontology-based approach for helping to secure the ETSI Machine-to-Machine Architecture