Security, Privacy and Trust Issues in Fog Computing

Benjamin Larsen: Trust Extensions in Next-Generation “System-of-Systems”

Cybersecurity is becoming an important topic due to the increasing recognition of its potential consequences, both directly to the systems concerned and indirectly to humans, society, and the environment at large. Digital economy, CyberPhysical Systems (CPS), cyberspace, and Internet of Things (IoT) connect Industrial Control Systems (ICS) and other digital entities to even larger SystemsofSystems (SoS), making sound security design more and more challenging and isolation absolutely obsolete.

A key challenge given the high uncertainty and complexity of processes to formalize the factors affecting the final indices of system security is establishing and managing trust between entities, starting from bilateral interaction between two single system components and continuing as such systems get connected to ever larger entities.

This raises the question: "How can we make sound statements on the security properties of single systems and transfer this to statements on the security properties of such hierarchical compositions of systems"?

Or in plain English: "How can we generate and propagate trust throughout a system"?

Therefore, a holistic, integrated approach with endtoend capabilities covering device integrity and trust, security management of data, software and timely patching, and threat intelligence are necessary.

 In this project, we research the design and development of cryptographically secure and scalable attestation mechanisms for enhancing the overall privacy posture of deployed fog devices and verifying the integrity of deployed softwarebased services. Privacy cannot be neglected when attesting to the security-critical circumstances of a system.

We further research the vulnerability analysis of trusted computing technologies (i.e., DICE, PUFs) and the underlying TCG Software Stack (TSS), and the market landscapes in general, to provide appliable and accurate knowledge to support enhancement and development

PhD project by Benjamin Larsen

Research section: Cyber Security

Principal supervisor: Christian D. Jensen 

Co-supervisors: Thanassis Giannetsos (Ubitech)

Title of project: Security, Privacy and Trust Issues in Fog Computing

Project start: 01.01.2021-31.12.2023

Contact

Benjamin Larsen
PhD student
DTU Compute

Contact

Christian D. Jensen
Associate Professor, Head of Section
DTU Compute
+45 45 25 37 24