Mengqiu Shen,Anfeng Liu,Guosheng Huang,Neal N. Xiong,Huimin Lu

DOI: https://doi.org/10.1109/jiot.2021.3049173

IF: 10.6

2021-04-15

IEEE Internet of Things Journal

Abstract:With billions of sensing devices are deployed in smart cities to monitor regions of interests and collect large sensing data, the Internet-of-Things (IoT) applications are being widely used in various fields and empower the intelligent smart cities. Due to the smart decision made by IoT applications depends on the reliability of data collection, it is pivotal to collect data from the trust sensing devices. However, how to identify the credibility of sensor nodes to ensure the credibility of data collection is a challenge issue. In this article, an active and traceable trust-based data collection (ATTDC) scheme is proposed to collect trust data in Internet of Thing. The main contribution of this article are as follows: 1) an active trust framework is proposed to quickly obtain the trustworthiness of sensor nodes by using unmanned aerial vehicles (UAVs) with a piggybacking method; 2) in order to accurately obtain the trust degree of the sensor nodes, a traceable trust method of obtaining is proposed in which nodes in the network send data packets by digital signature, Tracing suspicious nodes according to data routing paths to obtain active trust, therefore, the acquisition cost of the network can be effectively reduced; and 3) In order to reduce the acquisition cost of UAV, an ant colony algorithm-based flight path algorithm is designed to reduce the flight path of UAV, and obtain the credibility evaluation of as many nodes as possible. The experimental results show that the ATTDC scheme proposed in this article can identify the trust of the sensing nodes faster and more accurately, ensuring the credibility of data collection.

computer science, information systems,telecommunications,engineering, electrical & electronic

Weidong Fang,Ningning Cui,Wei Chen,Wuxiong Zhang,Yunliang Chen

DOI: https://doi.org/10.1109/tii.2020.3006137

IF: 12.3

2021-06-01

IEEE Transactions on Industrial Informatics

Abstract:The authenticity and integrity of sensed data in the data collection stage is a very critical aspect for the smart city industrial environment. They impact the accuracy of data analysis and the objectivity of making decisions. However, how to identify attack behaviors from environmental interference and establish a secure route to transmit data for resource-constrained terminals are challenging problems. To address these problems, in this article, we propose a trust-based security system (TSS). In TSS, we first design a trust model using binomial distribution for calculating the node's trust value and a third-party recommendation scheme for improving the objectivity of trust value. Then, we propose a trust management scheme for preventing the on–off attack. After that, we design a secure routing protocol, which is used to balance the security, transmission performance, and energy efficiency. Finally, the analytical results of the TSS are evaluated with extensive simulation experiment.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Wenjia Li,Houbing Song,Feng Zeng

DOI: https://doi.org/10.1109/jiot.2017.2720635

IF: 10.6

2017-01-01

IEEE Internet of Things Journal

Abstract:The Internet of Things (IoT), which is known as one of the key enabling technologies of smart cities, generally refers to the network of smart objects, which are embedded with sensing, computing, networking, and actuating capabilities that all together enable them to collect and exchange data. The IoT devices are usually wirelessly networked, and they serve as a key enabling technology for many critical smart city applications, such as intelligent transportation, smart grid, smart building, and mobile healthcare. However, security has become a key challenge for the wide deployment of IoT: because of the environmental influences, the IoT data are inherently noisy. Moreover, the IoT devices may be compromised by attackers to intentionally generate fake data. Finally, the underlying wireless network can also be subverted. To address the security issue in IoT, we propose a policy-based secure and trustworthy sensing scheme for IoT named RealAlert, in which the trustworthiness of both data and the IoT devices are evaluated based on both the reporting history and the context in which the data are collected using policy rules. Experimental results have shown that the RealAlert scheme can accurately assess the trust of the sensor nodes as well as data in IoT.

Dongfeng Fang,Yi Qian,Rose Qingyang Hu

DOI: https://doi.org/10.1109/jiot.2020.2970974

IF: 10.6

2020-04-01

IEEE Internet of Things Journal

Abstract:Internet-of-Things (IoT) applications have been rapidly deployed into pervasive environment, where both challenges and opportunities abound. On the one hand, a large number of IoT devices and their rich functions contribute significant volumes of data, which has brought tremendous convenience to the daily lives of end users. On the other hand, the heterogeneous IoT devices and a large amount of private information transmitted through networks also bring serious security and privacy issues. It is a big challenge to model IoT systems and trust relationships between different entities with a large number of heterogeneous IoT devices. In this article, we study a general IoT system architecture with consideration of heterogeneous IoT devices. Different trust models are proposed and analyzed based on the trust relationships between different entities in the IoT system. We propose a flexible and efficient authentication scheme with a consideration of heterogeneous IoT devices based on the least trust-required model. The proposed scheme provides security and privacy to resource-limited IoT devices flexibly and efficiently by utilizing IoT devices with better storage and computational ability. Moreover, secure data transmission is presented with contextual privacy and data integrity services. The proposed scheme achieves not only the mutual authentication, initial session key agreement, and data integrity but also anonymity, contextual privacy, forward security, end-to-end security, and key escrow resilience. Security analysis is presented to provide verification of the proposed protocol and security objectives. Moreover, performance evaluation is presented with comparison to the other schemes in terms of security features, computational overhead, and communication overhead. The performance comparisons show that our proposed scheme provides flexible and efficient security by consideration of heterogeneous IoT devices. With the higher proportion of resource-limited IoT devic-s, our proposed scheme outperforms other similar schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Zhenguo CHEN,Liqin TIAN,Chuang LIN

DOI: https://doi.org/10.3969/j.issn.0253-2778.2017.04.003

2017-01-01

Journal of University of Science and Technology of China

Abstract:In order to solve the source reliability problem of Big Data in the Internet of Things,a data reliable assurance model of Internet of Things based on the trust evaluation of perceived source was constructed with the evaluation unit,and each evaluation unit includes three categories,including the work node,the companion node and the decision node.The working nodes which are aware of the same kind of index can be used as the basis for calculating the value of each other's trust.The companion nodes and decision nodes are used to monitor the status of the working nodes.The companion nodes are used to verify the data of the working nodes regularly,so as to determine the status of the working nodes.The decision node is used when the working node is suspected to be abnormal so as to give the final result.Through the data collection and validation of the above three kinds of nodes,a method for calculating and adjusting the reliability of nodes was presented,which was used to obtain the trust value of each working node.Then,according to the given threshold value,the trust list was constructed,and the non-trusted nodes removed,and only the data perceived by the trusted node gets transmited and processed.At the same time,in order to ensure the initial reliability of the sensor node,the access authentication mechanism is introduced.From the results of theoretical analysis and simulation,the model has the characteristics of reliable node sensing data and flexible expansion,and can effectively improve the reliability of the data source of the Internet of Things.

Dr. Arasu Raman,Dr. Anantha Raj Arokiasamy,Chitra Batumalai,Dr. Mudiarasan Kuppusamy,Dr. Rajani Balakrishnan,Dr. Stephen Antoni Louis

DOI: https://doi.org/10.58346/jisis.2024.i3.002

2024-08-30

Abstract:Ensuring the genuineness and reliability of the data collected at the data collecting stage is of utmost importance in the Smart City (SC) industrial ecosystem. They influence the precision of statistical analysis and the impartiality of decision-making. Identifying attack behaviors caused by external interference and establishing a secure data transmission channel for terminals with limited resources are complex challenges. This paper presents a solution to these issues by introducing a Trust-based Security System (TSS). Within the framework of TSS, the initial step involves creating a trust model that utilizes binomial distribution to calculate the trust value of each node. The research implements a third-party suggestion method to enhance the objective of the trust rating. The research provides a trust management strategy to mitigate the ON-OFF assault. The study develops a robust routing algorithm that effectively manages the trade-off between safety, transmission effectiveness, and energy consumption. A comprehensive simulation exercise assesses the analytical findings of the TSS.

Tian Wang,Hao Luo,Weijia Jia,Anfeng Liu,Mande Xie

DOI: https://doi.org/10.1109/TII.2019.2930286

IF: 12.3

2020-01-01

IEEE Transactions on Industrial Informatics

Abstract:As an enabler for smart industrial Internet of Things (IoT), sensor cloud facilitates data collection, processing, analysis, storage, and sharing on demand. However, compromised or malicious sensor nodes may cause the collected data to be invalid or even endanger the normal operation of an entire IoT system. Therefore, designing an effective mechanism to ensure the trustworthiness of sensor nodes is a critical issue. However, existing cloud computing models cannot provide direct and effective management for the sensor nodes. Meanwhile, the insufficient computation and storage ability of sensor nodes makes them incapable of performing complex intelligent algorithms. To this end, mobile edge nodes with relatively strong computation and storage ability are exploited to provide intelligent trust evaluation and management for sensor nodes. In this article, a mobile edge computing-based intelligent trust evaluation scheme is proposed to comprehensively evaluate the trustworthiness of sensor nodes using probabilistic graphical model. The proposed mechanism evaluates the trustworthiness of sensor nodes from data collection and communication behavior. Moreover, the moving path for the edge nodes is scheduled to improve the probability of direct trust evaluation and decrease the moving distance. An approximation algorithm with provable performance is designed. Extensive experiments validate that our method can effectively ensure the trustworthiness of sensor nodes and decrease the energy consumption.

Peiyong Cong,Zhenhu Ning,Fei Xue,Haifeng Liu,Kechao Xu,Haibo Li

DOI: https://doi.org/10.1504/ijwmc.2017.10005966

2017-01-01

International Journal of Wireless and Mobile Computing

Abstract:Traditional methods of attestation cannot prevent the access of malicious nodes. In this paper, based on trusted connection architecture TCA, trusted network connection of TCA-IOT oriented to perception layer is supported to achieve mutual identity authentication and mutual integrity of platform between access point of centre of IOT and sensing nodes (sensing nodes, cluster node and sink node) and achieve the attestation of behaviours of sensing network.

Yu Zhang,Bei Gong,Yong Wu,Guiping Zheng,Zipeng Diao

DOI: https://doi.org/10.1155/2023/7463722

2023-02-11

Wireless Communications and Mobile Computing

Abstract:Intelligent internet of things (IIoTs) have these features: heterogeneous network patterns, significant differences in devices, dynamic variability of network topologies, etc. In the complex security situation, it is necessary to reject data from untrusted devices to guarantee the security data trading of IIoTs. In this paper, we focus on the trustworthiness and authentication in a hybrid SDN scenario of IIoTs. For the process of the trusted judgment, we firstly implement the standardized model for the nodes with the device attributes, network states, and operation behaviors. Based on the standardized model, we propose feature evaluation functions in SDN and IP domains, respectively, to calculate the intradomain node trust values to achieve the trusted judgment. To consider the demand for secure data trading for cross-domain devices, we propose a remote data trading scheme in which the data transmitter signs the node identity and its trust value by a group signature and the data receiver verifies the signature. The group signature is not only to protect the privacy of the group members but also to support the dynamic accession and revocation of group members, so it is more suitable for IIoTs where the nodes frequently access/exit. The security is proved under the standard model. We conduct the simulation experiments to evaluate the correctness of the trusted judgment mechanism. The evaluation shows that the scheme has lower computational cost and the higher efficiency of the group signature scheme.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jian Gao,Licheng Wang,Chao Huo,Ganghong Zhang,Jianan Yuan,Yujie Xu

DOI: https://doi.org/10.1109/icccbda49378.2020.9095639

2020-01-01

Abstract:Based on the analysis of the security requirements of power internet of things and the idea of security solution provided by trusted computing, this paper studied the power Internet of things information security interaction model and key technologies to realize the information security interaction of power internet of things, and proposed a real-time evaluation model of terminal entities based on global trusted. Punishment factor and time factor were introduced to upgrade the evaluation method from single evaluation to global evaluation. Taking the power distribution system as an example, the information security intersection model of power internet of things based on behavioral trusted measurement mechanism was simulated. The simulation results showed that the model had continuous trusted measurement ability in dynamic uncertain network environment, and could make trustworthiness decision in real time and accurately. It is more practical and laid a good foundation for the research of trustworthiness connection, trustworthiness management and trustworthiness decision-making based on trusted measurement.

Subhash Sagar,Adnan Mahmood,Kai Wang,Quan Z. Sheng,Wei Emma Zhang

DOI: https://doi.org/10.48550/arXiv.2205.03226

2022-05-04

Abstract:The recent emergence of the promising paradigm of the Social Internet of Things (SIoT) is a result of an intelligent amalgamation of the social networking concepts with the Internet of Things (IoT) objects (also referred to as "things") in an attempt to unravel the challenges of network discovery, navigability, and service composition. This is realized by facilitating the IoT objects to socialize with one another, i.e., similar to the social interactions amongst the human beings. A fundamental issue that mandates careful attention is to thus establish, and over time, maintain trustworthy relationships amongst these IoT objects. Therefore, a trust framework for SIoT must include object-object interactions, the aspects of social relationships, credible recommendations, etc., however, the existing literature has only focused on some aspects of trust by primarily relying on the conventional approaches that govern linear relationships between input and output. In this paper, an artificial neural network-based trust framework, Trust-SIoT, has been envisaged for identifying the complex non-linear relationships between input and output in a bid to classify the trustworthy objects. Moreover, Trust-SIoT has been designed for capturing a number of key trust metrics as input, i.e., direct trust by integrating both current and past interactions, reliability, and benevolence of an object, credible recommendations, and the degree of relationship by employing a knowledge graph embedding. Finally, we have performed extensive experiments to evaluate the performance of Trust-SIoT vis-a-vis state-of-the-art heuristics on two real-world datasets. The results demonstrate that Trust-SIoT achieves a higher F1 and lower MAE and MSE scores.

Social and Information Networks

Xinyin Xiang,Jin Cao,Weiguo Fan

DOI: https://doi.org/10.1109/jsyst.2020.3040739

IF: 4.802

2021-09-01

IEEE Systems Journal

Abstract:Trusted data transmission is the foundation of the Internet of Things (IoT) security, so in the process of data transmission, the trust of IoT nodes needs to be confirmed in real time, and the real-time tracking of node trust is also expected. Yet, modern IoT devices provide limited security capabilities, forming a new attack focus. Remote attestation is a kind of technology to detect network threats by remotely checking the internal situation of terminal devices by a trusted entity. Multidevice attestation is rarely studied although the ongoing single device attestation techniques lack scalability in the application of IoT. In this article, we present a lightweight attestation protocol based on an IoT system under an ideal physical unclonable functions environment. Our protocol can resilient against any strong adversary who physically accesses IoT devices. Simulation results show that our protocol is scalable and can be applied to dynamic networks.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Shengye Pang,Jiayin Luo,Xinkui Zhao,Jintao Chen,Fan Wang,Jianwei Yin

DOI: https://doi.org/10.1145/3649893

2024-02-28

ACM Transactions on Sensor Networks

Abstract:The smart city is an increasingly popular concept when it comes to urban development. In a smart city, numerous sensor services are generated by IoT sensors in a distributed manner, requiring proper management and effective interaction to guarantee the connectivity of different regions. However, the sensitive nature of sensor data raises concerns over joining public cloud centers or edge servers, despite assurances of their reliability from providers. Local deployment and maintenance of sensor services may cause these service providers to become ”data isolated islands”, hindering the construction process of smart city. This paper proposes a distributed trustworthy sensor service network architecture named DTSSN to support the building of a fully distributed sensor service network. The proposed network architecture operates through the collaboration of two core devices, the sensor service switch and router, to effectively enable the registration, discovery, invocation, transaction, and monitoring of cross-region sensor services. Then, a lightweight trustworthy transaction mechanism based on blockchain is proposed to realize SLA-based automatic service transaction while reducing potential risks in the service network. Comparative analysis and simulation experiments validate the effectiveness of the DTSSN architecture in terms of scalability, availability, and trustworthiness, underscoring its potential in advancing smart city development and governance.

computer science, information systems,telecommunications

Shibo He,Jiming Chen,Yuanchao Shu,Xianbin Cui,Kun Shi,Chunjuan Wei,Zhiguo Shi

DOI: https://doi.org/10.1109/twc.2021.3089039

IF: 10.4

2021-01-01

IEEE Transactions on Wireless Communications

Abstract:Information barrier coverage has been widely adopted to prevent unauthorized invasion of important areas in Internet of Things. As sensors are typically placed outdoors, they are susceptible to getting faulty. Previous works assumed that faulty sensors are easy to recognize, e.g., they may stop functioning or output apparently deviant sensory data. In practice, there exist multiple types of fault that sensors may have during operation. It is, thereby, difficult to recognize faulty sensors as well as their invalid output and attain accurate intrusion detection. We, in this paper, propose a novel fault-tolerant intrusion detection algorithm (TrusDet) based on trust management to address this challenging issue. TrusDet comprises of three steps: i) sensor-level detection, ii) sink-level decision by collective voting, and iii) trust management and fault determination. In the Step i) and ii), TrusDet divides the surveillance area into a set of fine-grained subareas and exploits temporal and spatial correlation of sensory output among sensors in different subareas to yield a more accurate and robust performance of information barrier coverage. In the Step iii), TrusDet builds a trust management based framework to determine the confidence level of sensors being faulty. We implement TrusDet on HC-SR501 infrared sensors, and design hardware and software to build a practical detection system. Extensive experimental results and simulation results validate the information coverage model and demonstrate that TrusDet has a very low false alarm rate.

Bo Wang,Mingchu Li,Xing Jin,Cheng Guo

DOI: https://doi.org/10.1109/access.2020.2979022

IF: 3.9

2020-01-01

IEEE Access

Abstract:With the development of the Internet of Things (IoT) technology, many end-users participate in the smart city through their own intelligent mobile devices (such as personal wearable devices, smartphones.) or sensors. The main challenge of the device sensing layer in the edge computing system of the IoT in the smart city is to select the trusted participants. Because not all the intelligent devices of the IoT are trustworthy, some intelligent devices of the IoT may maliciously damage the network or services and affect the service quality of the system. On this basis, an intelligent device selective recommendation mechanism based on the dynamic black-and-white list was proposed to solve the problem of selecting trusted participants to improve the service quality of the edge computing system of the IoT in the smart city. We introduced the evolutionary game theory to theoretically qualitatively study the validity and stability of the trust management mechanism proposed in this paper. The Lyapunov theory was used to prove the validity and stability of the trust management mechanism. The effectiveness of the trust management mechanism was verified by the actual scenario of the personal health monitoring management system and the air-quality monitoring and analysis system in the smart city environment. Experiments showed that the trust management mechanism proposed in this paper has a significant role in promoting the cooperation of multi intelligent devices in the IoT edge computing system. It more reliably resists the malicious attacks to service providers and is suitable for the large-scale IoT edge computing system in the smart city.

Subhash Sagar,Adnan Mahmood,Kai Wang,Quan Z. Sheng,Jitander Kumar Pabani,Wei Emma Zhang

DOI: https://doi.org/10.1109/tnsm.2023.3247831

2023-01-01

IEEE Transactions on Network and Service Management

Abstract:The recent emergence of the promising paradigm of the Social Internet of Things (SIoT) is a result of an intelligent amalgamation of the social networking concepts with the Internet of Things (IoT) objects (also referred to as “things”) in an attempt to unravel the challenges of network discovery, navigability, and service composition. This is realized by facilitating the IoT objects to socialize with one another, i.e., similar to the social interactions amongst human beings. A fundamental issue that mandates careful attention is to thus establish, and over time, maintain trustworthy relationships amongst these IoT objects. Therefore, a trust framework for SIoT must include object-object interactions, the aspects of social relationships, credible recommendations, etc., however, the existing literature has only focused on some aspects of trust by primarily relying on the conventional approaches that govern linear relationships between input and output. In this paper, an artificial neural network-based trust framework, Trust–SIoT , has been envisaged for identifying the complex non-linear relationships between input and output in a bid to classify trustworthy objects. Moreover, Trust–SIoT has been designed for capturing a number of key trust metrics as input, i.e., direct trust by integrating both current and past interactions, reliability and benevolence of an object, credible recommendations, and the degree of relationship by employing knowledge graph embedding. Finally, we have performed extensive experiments to evaluate the performance of Trust–SIoT vis-á-vis state-of-the-art heuristics on two real-world datasets. The results demonstrate that Trust–SIoT achieves a higher F1-score and lower MAE and MSE scores.

Wei Ren,Ruoting Xiong,Yizhi Liu,G. Min,Tianqing Zhu,Xiaohan Hao,K. Choo

DOI: https://doi.org/10.1109/TC.2022.3157996

IF: 3.183

2023-02-01

IEEE Transactions on Computers

Abstract:Internet-of-Things (IoT) are increasingly operating in the zero-trust environments where any devices and systems may be compromised and hence untrusted. In addition, data collected by and sent from IoT devices may be shared with and processed by edge computing systems, in order to reduce the reliance on centralized (cloud) servers, leading to further security and privacy issues. To cope with these challenges, this paper proposes an innovative blockchain-enabled information sharing solution in zero-trust context to guarantee anonymity yet entity authentication, data privacy yet data trustworthiness, and participant stimulation yet fairness. This new solution is able to support filtering of fabricated information through smart contracts, effective voting, and consensus mechanisms, which can prevent unauthenticated participants from sharing garbage information. We also prove that the proposed solution is secure in the universal composability framework, and further evaluate its performance over an Ethereum-based blockchain platform to demonstrate its utility.

Computer Science,Engineering

Qing Zhang,Dilong Xu

DOI: https://doi.org/10.1007/s12652-018-0949-2

2018-01-01

Abstract:With the rapid development of the Internet of Things (IoT) technology in the information society, how to meet the urgent requirements of current users for trusted transmission services is a research hot-spots in the field of the IoT industry. In view of the research status on security authentication in IoT, a security authentication technology based on dynamic Bayesian network combined with trusted protocol is proposed in this paper. Through the introduction of the trusted measurement and the combined public key-based security authentication mechanism in the network, it enhances the security information exchange and considers the node credibility and the path reliability in the routing decision so as to choose a high secure and trusted path for information transmission in IoT. The evaluation results showed that our algorithm achieves a much better security performance than comparison algorithms in overhead and computational complexity for real time applications. In addition, our algorithm has also an adaptive capability and can quickly react to the denial of the service attack, which effectively suppress the threat of abnormal entity in the IoT.

Shice Zhao,Hongshan Zhao,Jingjie Sun

DOI: https://doi.org/10.1049/smt2.12160

2023-09-17

IET Science Measurement & Technology

Abstract:Currently, a large number of monitoring sensors are introduced into the power grid. However, the traditional trust models commonly used for edge‐side security management are weak in detecting large‐scale malicious interactions and collusion attacks. For that, a lightweight and anti‐collusion trust model combined with nodes' dynamic relevance for the power IoT is proposed. A large number of monitoring sensors are introduced in the power grid. However, the traditional trust models commonly used for edge‐side security management are weak in detecting large‐scale malicious interactions and collusion attacks. For that, a lightweight and anti‐collusion trust model combined with nodes' dynamic relevance for the power Internet of Things (IoT) is proposed. Firstly, a global trust management system is constructed according to the working mechanism of sensors in the power grid. After that, trust feedback and contact frequency of the devices are combined to build an adaptive dynamic weight vector based on relevance volatility. Fluctuations in trust values are reduced and the trust difference between normal and malicious nodes is widened. An anti‐collusion algorithm based on contact set awareness is also designed to effectively detect collusion attacks. The checksum local broadcast is established in the trust model to counteract the risk of intelligent terminal failure. The results show that the trust model achieves 100% accuracy of node discrimination when the maximum proportion of malicious nodes is 20% in a 50‐node network scale. In addition, the calculation time of the overall model is 211 ms and the memory consumption is 161 kb, which is suitable for power IoT sensor networks.

engineering, electrical & electronic

Bing Zhang,Xinxin Ma,Zhiguang Qin

2011-01-01

Abstract:⎯By analyzing existed Internet of Things’ system security vulnerabilities, a security architecture on trusting one is constructed. In the infrastructure, an off-line identity authentication based on the combined public key (CPK) mechanism is proposed, which solves the problems about a mass amount of authentications and the cross-domain authentication by integrating nodes’ validity of identity authentication and uniqueness of identification. Moreover, the proposal of constructing nodes’ authentic identification, valid authentication and credible communication connection at the application layer through the perception layer impels the formation of trust chain and relationship among perceptional nodes. Consequently, a trusting environment of the Internet of Things is built, by which a guidance of designing the trusted one would be provided. Index Terms⎯Combined public key, elliptic curves cryptography, Internet of Things, radio frequency identification, security system, trusting system.