Saad Khan,Simon Parkinson,Yongrui Qin

DOI: https://doi.org/10.1186/s13677-017-0090-3

2017-08-16

Journal of Cloud Computing

Abstract:Fog computing is a new paradigm that extends the Cloud platform model by providing computing resources on the edges of a network. It can be described as a cloud-like platform having similar data, computation, storage and application services, but is fundamentally different in that it is decentralized. In addition, Fog systems are capable of processing large amounts of data locally, operate on-premise, are fully portable, and can be installed on heterogeneous hardware. These features make the Fog platform highly suitable for time and location-sensitive applications. For example, Internet of Things (IoT) devices are required to quickly process a large amount of data. This wide range of functionality driven applications intensifies many security issues regarding data, virtualization, segregation, network, malware and monitoring. This paper surveys existing literature on Fog computing applications to identify common security gaps. Similar technologies like Edge computing, Cloudlets and Micro-data centres have also been included to provide a holistic review process. The majority of Fog applications are motivated by the desire for functionality and end-user requirements, while the security aspects are often ignored or considered as an afterthought. This paper also determines the impact of those security issues and possible solutions, providing future security-relevant directions to those responsible for designing, developing, and maintaining Fog systems.

Ivan Stojmenovic,Sheng Wen,Xinyi Huang,Hao Luan

DOI: https://doi.org/10.1002/cpe.3485

2015-01-01

Concurrency and Computation Practice and Experience

Abstract:SummaryFog computing is a paradigm that extends Cloud computing and services to the edge of the network. Similar to Cloud, Fog provides data, compute, storage and application services to end users. In this article, we elaborate the motivation and advantages of Fog computing and analyse its applications in a series of real scenarios, such as Smart Grid, smart traffic lights in vehicular networks and software defined networks. We discuss the state of the art of Fog computing and similar work under the same umbrella. Distinguished from other reviewing work of Fog computing, this paper further discloses the security and privacy issues according to current Fog computing paradigm. As an example, we study a typical attack, man‐in‐the‐middle attack, for the discussion of system security in Fog computing. We investigate the stealthy features of this attack by examining its CPU and memory consumption on Fog device. In addition, we discuss the authentication and authorization techniques that can be used in Fog computing. An example of authentication techniques is introduced to address the security scenario where the connection between Fog and Cloud is fragile. Copyright © 2015 John Wiley & Sons, Ltd.

Tom H. Luan,Longxiang Gao,Zhi Li,Yang Xiang,Guiyi We,Limin Sun

2016-01-01

Abstract:With smart devices, particular smartphones, becoming our everyday companions, the ubiquitous mobile Internet and computing applications pervade people’s daily lives. With the surge demand on high-quality mobile services at anywhere, how to address the ubiquitous user demand and accommodate the explosive growth of mobile traffics is the key issue of the next generation mobile networks. The Fog computing is a promising solution towards this goal. Fog computing extends cloud computing by providing virtualized resources and engaged location-based services to the edge of the mobile networks so as to better serve mobile traffics. Therefore, Fog computing is a lubricant of the combination of cloud computing and mobile applications. In this article, we outline the main features of Fog computing and describe its concept, architecture and design goals. Lastly, we discuss some of the future research issues from the networking perspective.

Ke Gu,Na Wu,Bo Yin,Weijia Jia

DOI: https://doi.org/10.1109/tnsm.2019.2941869

2019-01-01

IEEE Transactions on Network and Service Management

Abstract:Fog computing is mainly used to process a large amount of data produced by terminal devices. As fog nodes are the closest acquirers to the terminal devices, the processed data may be tampered with or illegally captured by some malicious nodes while the data is transferred or aggregated. When some applications need to require real-time process with high security, cloud service may sample some data from fog service to check final results. In this paper, we propose a secure data query framework for cloud and fog computing. We use cloud service to check queried data from fog network when fog network provides queried data to users. In the framework, cloud server pre-designates some data aggregation topology trees to fog network, and then fog network may acquire related data from fog nodes according to one of the pre-designated data aggregation trees. Additionally, some fog nodes are assigned as sampled nodes that can feed back related data to cloud server. Based on the security requirements of fog computing, we analyze the security of our proposed framework. Our framework not only guarantees the reliability of required data but also effectively protects data against man-in-the-middle attack, single node attack and collusion attack of malicious users. Also, the experiments show our framework is effective and efficient.

Mithun Mukherjee,Rakesh Matam,Lei Shu,Leandros Maglaras,Mohamed Amine Ferrag,Nikumani Choudhury,Vikas Kumar

DOI: https://doi.org/10.1109/access.2017.2749422

IF: 3.9

2017-01-01

IEEE Access

Abstract:Fog computing paradigm extends the storage, networking, and computing facilities of the cloud computing toward the edge of the networks while offloading the cloud data centers and reducing service latency to the end users. However, the characteristics of fog computing arise new security and privacy challenges. The existing security and privacy measurements for cloud computing cannot be directly applied to the fog computing due to its features, such as mobility, heterogeneity, and large-scale geo-distribution. This paper provides an overview of existing security and privacy concerns, particularly for the fog computing. Afterward, this survey highlights ongoing research effort, open challenges, and research trends in privacy and security issues for fog computing.

computer science, information systems,telecommunications,engineering, electrical & electronic

Gulshan Kumar,Rahul Saha,Mritunjay Kumar Rai,Reji Thomas,G. Geetha,Tai-Hoon Kim,Joel J. P. C. Rodrigues

DOI: https://doi.org/10.1109/jiot.2020.2991105

IF: 10.6

2020-01-01

IEEE Internet of Things Journal

Abstract:Interconnection and intercommunication between people, processes, and things have been enhanced with the development of the Internet of Things (IoT) and extended with fog computing for better efficiency. Fog computing improves the network services and circumvents the problem of escalated data management as an interface between cloud and terminal with the requirement of secure data transmission. In this article, a novel security framework is designed for fog computing intended for improving the security of IoT. This framework uses single point of aggregation from fog interface and lattice cryptographic approach to establish the security for the services. Azure cloud platform and Sage lattice cryptographic base have been employed to evaluate the performance of the framework. It is noticed that the Level 1-Level 2 (L1-L2) cache implementation in the system significantly improves the efficiency of the framework. The results show that the proposed framework is robust in preventing attacks on fog nodes and additionally provides an advantage for low communication overhead.

Carmine Cesarano

DOI: https://doi.org/10.1109/ISSREW60843.2023.00037

2023-08-24

Abstract:In recent years, there has been a shift in computing architectures, moving away from centralized cloud computing towards decentralized edge and fog computing. This shift is driven by factors such as the increasing volume of data generated at the edge, the growing demand for real-time processing and low-latency applications, and the need for improved privacy and data locality. Although this new paradigm offers numerous advantages, it also introduces significant security and reliability challenges. This paper aims to review the architectures and technologies employed in fog computing and identify opportunities for developing novel security assessment and security hardening techniques. These techniques include secure configuration and debloating to enhance the security of middleware, testing techniques to assess secure communication mechanisms, and automated rehosting to speed up the security testing of embedded firmware.

Cryptography and Security

Pengfei Hu,Sahraoui Dhelim,Huansheng Ning,Tie Qiu

DOI: https://doi.org/10.1016/j.jnca.2017.09.002

IF: 7.574

2017-01-01

Journal of Network and Computer Applications

Abstract:The emergence of Internet of Things (IoT) has enabled the interconnection and intercommunication among massive ubiquitous things, which caused an unprecedented generation of huge and heterogeneous amount of data, known as data explosions. On the other hand, although that cloud computing has served as an efficient way to process and store these data, however, challenges, such as the increasing demands of real time or latency-sensitive applications and the limitation of network bandwidth, still cannot be solved by using only cloud computing. Therefore, a new computing paradigm, known as fog computing, has been proposed as a complement to the cloud solution. Fog computing extends the cloud services to the edge of network, and makes computation, communication and storage closer to edge devices and end-users, which aims to enhance low-latency, mobility, network bandwidth, security and privacy. In this paper, we will overview and summarize fog computing model architecture, key technologies, applications, challenges and open issues. Firstly, we will present the hierarchical architecture of fog computing and its characteristics, and compare it with cloud computing and edge computing to emphasize the similarities and differences. Then, the key technologies like computing, communication and storage technologies, naming, resource management, security and privacy protection are introduced to present how to support its deployment and application in a detailed manner. Several application cases like health care, augmented reality, brain machine interface and gaming, smart environments and vehicular fog computing are also presented to further explain fog computing application scenarios. Finally, based on the observation, we propose some challenges and open issues which are worth further in-depth study and research in fog computing development.

Fangming Bi,Xuzhi Miao,Wei Chen,Weidong Fang,Wuxiong Zhang,Deyu Wang

DOI: https://doi.org/10.1109/cybermatics_2018.2018.00298

2018-01-01

Abstract:Fog computing extends cloud computing paradigms to the edge of the network, enabling a new generation of applications and services. This paper mainly elaborates the related background and characteristics of fog computing, discusses the concept and hierarchical structure of fog computing services, compares the advantages of cloud computing and fog computing, analyzes the existing techniques and applications of fog computing, and analyzes possible security issues in fog computing and solutions to some of the security issues.

Jiafu Jiang,Linyu Tang,Ke Gu,WeiJia Jia

DOI: https://doi.org/10.1093/comjnl/bxz108

2020-01-01

The Computer Journal

Abstract:Fog computing has become an emerging environment that provides data storage, computing and some other services on the edge of network. It not only can acquire data from terminal devices, but also can provide computing services to users by opening computing resources. Compared with cloud computing, fog devices can collaborate to provide users with powerful computing services through resource allocation. However, as many of fog devices are not monitored, there are some security problems. For example, since fog server processes and maintains user information, device information, task parameters and so on, fog server is easy to perform illegal resource allocation for extra benefits. In this paper, we propose a secure computing resource allocation framework for open fog computing. In our scheme, the fog server is responsible for processing computing requests and resource allocations, and the cloud audit center is responsible for auditing the behaviors of the fog servers and fog nodes. Based on the proposed security framework, our proposed scheme can resist the attack of single malicious node and the collusion attack of fog server and computing devices. Furthermore, the experiments show our proposed scheme is efficient. For example, when the number of initial idle service devices is 40, the rejection rate of allocated tasks is 10% and the total number of sub-tasks is changed from 150 to 200, the total allocation time of our scheme is only changed from 15 ms to 25 ms; additionally, when the task of 5000 order matrix multiplication is tested on 10 service devices, the total computing time of our scheme is $\sim$250 s, which is better than that of single computer (where single computer needs more than 1500 s). Therefore, our proposed scheme has obvious advantages when it faces some tasks that require more computational cost, such as complex scientific computing, distributed massive data query, distributed image processing and so on.

Carla Mouradian,Diala Naboulsi,Sami Yangui,Roch H. Glitho,Monique J. Morrow,Paul A. Polakos

DOI: https://doi.org/10.1109/comst.2017.2771153

2018-01-01

Abstract:Cloud computing with its three key facets (i.e., Infrastructure-as-a-Service, Platform-as-a-Service, and Software-as-a-Service) and its inherent advantages (e.g., elasticity and scalability) still faces several challenges. The distance between the cloud and the end devices might be an issue for latency-sensitive applications such as disaster management and content delivery applications. Service level agreements (SLAs) may also impose processing at locations where the cloud provider does not have data centers. Fog computing is a novel paradigm to address such issues. It enables provisioning resources and services outside the cloud, at the edge of the network, closer to end devices, or eventually, at locations stipulated by SLAs. Fog computing is not a substitute for cloud computing but a powerful complement. It enables processing at the edge while still offering the possibility to interact with the cloud. This paper presents a comprehensive survey on fog computing. It critically reviews the state of the art in the light of a concise set of evaluation criteria. We cover both the architectures and the algorithms that make fog systems. Challenges and research directions are also introduced. In addition, the lessons learned are reviewed and the prospects are discussed in terms of the key role fog is likely to play in emerging technologies such as tactile Internet.

computer science, information systems,telecommunications

Arwa Alrawais,Abdulrahman Alhothaily,Chunqiang Hu,Xiuzhen Cheng

DOI: https://doi.org/10.1109/mic.2017.37

IF: 2.68

2017-01-01

IEEE Internet Computing

Abstract:The inherent characteristics of Internet of Things (IoT) devices, such as limited storage and computational power, require a new platform to efficiently process data. The concept of fog computing has been introduced as a technology to bridge the gap between remote data centers and IoT devices. Fog computing enables a wide range of benefits, including enhanced security, decreased bandwidth, and reduced latency. These benefits make the fog an appropriate paradigm for many IoT services in various applications such as connected vehicles and smart grids. Nevertheless, fog devices (located at the edge of the Internet) obviously face many security and privacy threats, much the same as those faced by traditional data centers. In this article, the authors discuss the security and privacy issues in IoT environments and propose a mechanism that employs fog to improve the distribution of certificate revocation information among IoT devices for security enhancement. They also present potential research directions aimed at using fog computing to enhance the security and privacy issues in IoT environments.

Shaifali Malukani -

DOI: https://doi.org/10.36948/ijfmr.2024.v06i05.27395

2024-09-12

International Journal For Multidisciplinary Research

Abstract:This paper presents a fog computing framework designed to enhance the performance of online food delivery systems by reducing latency and improving packet transfer efficiency. Unlike traditional cloud-based systems, which often suffer from high latency due to centralized data processing, the proposed framework leverages fog computing to distribute processing closer to users, thereby minimizing delays and enhancing service responsiveness. A key contribution of this framework is its strategic approach to service placement, which delineates the optimal distribution of services between cloud and fog environments. This strategic distribution aims to balance computational load and enhance overall service efficiency. Although the framework is currently at a conceptual stage, it lays out a comprehensive plan for future practical implementation. Subsequent work will involve deploying the framework in real-world settings, evaluating its performance, collecting user feedback, and conducting security assessments to confirm its benefits and refine its functionalities. This work provides a foundational approach for leveraging fog computing to advance online food delivery systems, setting the stage for future developments in this area.

Rodrigo Roman,Javier Lopez,Masahiro Mambo

DOI: https://doi.org/10.1016/j.future.2016.11.009

2016-11-14

Abstract:For various reasons, the cloud computing paradigm is unable to meet certain requirements (e.g. low latency and jitter, context awareness, mobility support) that are crucial for several applications (e.g. vehicular networks, augmented reality). To fulfil these requirements, various paradigms, such as fog computing, mobile edge computing, and mobile cloud computing, have emerged in recent years. While these edge paradigms share several features, most of the existing research is compartmentalised; no synergies have been explored. This is especially true in the field of security, where most analyses focus only on one edge paradigm, while ignoring the others. The main goal of this study is to holistically analyse the security threats, challenges, and mechanisms inherent in all edge paradigms, while highlighting potential synergies and venues of collaboration. In our results, we will show that all edge paradigms should consider the advances in other paradigms.

Cryptography and Security,Networking and Internet Architecture

Wided Ben Daoud,Mohammad S. Obaidat,Amel Meddeb-Makhlouf,Faouzi Zarai,Kuei-Fang Hsiao

DOI: https://doi.org/10.1186/s13673-019-0188-3

2019-07-22

Abstract:Abstract Fog computing network is designed as an extension of the cloud due to the need for a supporting platform capable of ensuring the requirements of Internet of Thing (IoT). The growth of fog based fifth generation mobile communication (5G) system is challenged by the need for data sharing security. In fact, without properly securing access to Fog node resources in IoT network, services providers may not be able to achieve the desired performance. Indeed, fog computing obviously confront numerous security and privacy risks, due to its features, such as huge scale geolocation, heterogeneity and mobility. Thus, we propose a security model that is based on cooperation between IoT and fog. This model integrates an efficient access control process associated with a monitoring scheme to ensure secure cooperation between diverse resources and different operational parts. Indeed, a comprehensive scheduling process and resource allocation mechanism using our security model is proposed to improve the intended performance of the system. In fact, our main contribution is to introduce a distributed access control based on security resource management framework for fog-IoT networks, and proactive security scheme under ultra-trustworthiness and low-latency constraints. After evaluation based on iFogSim, we have proved that our scheme not only provides low latency with high security and privacy, but also reduces the complexity of administration and management of security and resources mechanisms.

computer science, information systems

Sudheer Kumar Battula,Saurabh Garg,James Montgomery,Ranesh Naha

2024-03-03

Abstract:Meeting the requirements of future services with time sensitivity and handling sudden load spikes of the services in Fog computing environments are challenging tasks due to the lack of publicly available Fog nodes and their characteristics. Researchers have assumed that the traditional autoscaling techniques, with lightweight virtualisation technology (containers), can be used to provide autoscaling features in Fog computing environments, few researchers have built the platform by exploiting the default autoscaling techniques of the containerisation orchestration tools or systems. However, the adoption of these techniques alone, in a publicly available Fog infrastructure, does not guarantee Quality of Service (QoS) due to the heterogeneity of Fog devices and their characteristics, such as frequent resource changes and high mobility. To tackle this challenge, in this work we developed a Fog as a Service (FaaS) framework that can create, configure and manage the containers which are running on the Fog devices to deploy services. This work presents the key techniques and algorithms which are responsible for handling sudden load spikes of the services to meet the QoS of the application. This work provides an evaluation by comparing it with existing techniques under real scenarios. The experiment results show that our proposed approach maximises the satisfied service requests by an average of 1.9 times in different scenarios.

Distributed, Parallel, and Cluster Computing

DOI: https://doi.org/10.1007/s00779-024-01802-y

2024-04-22

Personal and Ubiquitous Computing

Abstract:The technological revolution brought by the Internet of Things (IoT) has mostly relied on cloud computing. However, to satisfy the demands of time-sensitive services in the medical industry, fog computing, a novel computational platform based on the cloud computing paradigm, has shown to be a useful tool by extending cloud resources to the network's edge. The current paper examines the role of the fog paradigm in the domain of healthcare decision-making, focusing on its primary advantages in terms of latency, network utilization, and power consumption. A fog-computing-based health assessment framework is developed in the current paper. Moreover, based on effective performance parameters, the performance is evaluated and depicted. The results show that the presented strategy can reduce network congestion of the communication network by analyzing information at the local node. Moreover, increased security on health information can be maintained at local fog node, and enhanced data protection from unauthorized access can be acquired. Fog computing offers greater insights into the health condition of patients with enhanced accuracy, precision, reliability, and stability.

computer science, information systems,telecommunications

Lei Zhang,Jiangtao Li

DOI: https://doi.org/10.1109/access.2018.2868920

IF: 3.9

2018-01-01

IEEE Access

Abstract:Fog computing is an extension of cloud computing and enables computing directly at the edge of the network. In fog computing paradigm, the fog nodes reside between smart end devices and the cloud. Benefiting from the structure of fog computing, fog computing can provide services with low latency, location awareness, and mobility. Since the fog nodes are not as powerful as the cloud, resource allocation techniques are usually adapted to optimize the utilization of the resources of fog nodes. However, the current resource allocation techniques are not privacy-preserving, i.e., an attacker can easily find end devices’ sensitive information. In this paper, we propose a privacy-preserving resource allocation scheme for fog computing. The new proposal has constant message expansion, and it is secure against both an eavesdropper and a smart gateway that is employed to perform the resource allocation algorithm. Our scheme is also robust, since it achieves a full key compromise resistance which guarantees that even if the private keys of all the fog nodes in a fog system are corrupted the scheme remains secure.

Mohammad Goudarzi,Qifan Deng,Rajkumar Buyya

DOI: https://doi.org/10.48550/arXiv.2108.00591

2021-08-02

Abstract:Edge/Fog computing is a novel computing paradigm that provides resource-limited Internet of Things (IoT) devices with scalable computing and storage resources. Compared to cloud computing, edge/fog servers have fewer resources, but they can be accessed with higher bandwidth and less communication latency. Thus, integrating edge/fog and cloud infrastructures can support the execution of diverse latency-sensitive and computation-intensive IoT applications. Although some frameworks attempt to provide such integration, there are still several challenges to be addressed, such as dynamic scheduling of different IoT applications, scalability mechanisms, multi-platform support, and supporting different interaction models. FogBus2, as a new python-based framework, offers a lightweight and distributed container-based framework to overcome these challenges. In this chapter, we highlight key features of the FogBus2 framework alongside describing its main components. Besides, we provide a step-by-step guideline to set up an integrated computing environment, containing multiple cloud service providers (Hybrid-cloud) and edge devices, which is a prerequisite for any IoT application scenario. To obtain this, a low-overhead communication network among all computing resources is initiated by the provided scripts and configuration files. Next, we provide instructions and corresponding code snippets to install and run the main framework and its integrated applications. Finally, we demonstrate how to implement and integrate several new IoT applications and custom scheduling and scalability policies with the FogBus2 framework.

Distributed, Parallel, and Cluster Computing,Networking and Internet Architecture,Performance,Systems and Control

B. B. Gupta,Yogachandran Rahulamathavan,Shingo Yamaguchi,Tyson Brooks,Zheng Yan

DOI: https://doi.org/10.1109/access.2019.2940302

IF: 3.9

2019-01-01

IEEE Access

Abstract:Today, cloud computing services are undeniably becoming parts of modern information and communication systems in our daily lives. Cloud computing has proven to be an incredible technology for provisioning quickly deployed and scalable information technology (IT) solutions at reduced infrastructure costs. Cloud computing is unable to meet the requirements of low latency, location awareness, and mobility support. To solve this problem, researchers have introduced a trusted and dependable solution through fog and mobile edge computing (FMEC) to put the services and resources of the cloud closer to users, which facilitates the leveraging of available services and resources in the edge networks. Organizations are beginning to look at FMEC as the answer to the cloud computing problem. FMEC consists of putting micro data centers or even small, purpose-built high-performance data analytics machines in remote offices and locations in order to gain real-time insights from the data collected, or to promote data thinning at the edge, by dramatically reducing the amount of data that needs to be transmitted to a central data center. Without having to move unnecessary data to a central data center, analytics at the edge can simplify and drastically speed analysis while also cutting costs. FMEC pushes applications, data, and computing power (services) away from centralized points to the logical extremes of a network. FMEC replicates fragments of information across distributed networks of web servers, which may be vast. As a topological paradigm, edge computing is also referred to as mesh computing, peer-to-peer computing, autonomic (self-healing) computing, grid computing, and other names implying non-centralized, node-less availability.