L. Coppolino, S. D'Antonio, Giovanni Mazzeo, L. Romano, Irene Bonetti, Elena Spagnuolo
{"title":"通过TEE保护LP-WAN端点:一个化学储存案例研究","authors":"L. Coppolino, S. D'Antonio, Giovanni Mazzeo, L. Romano, Irene Bonetti, Elena Spagnuolo","doi":"10.1109/ISSREW53611.2021.00100","DOIUrl":null,"url":null,"abstract":"Industrial IoT (IIoT) solutions typically rely on Low-Power Wide Area Network (LP-WAN) protocols to transmit data over long distances while preserving battery life. Regrettably, the distributed nature of LP-WAN deployments and the adoption of managed services make the endpoints —from the field up to the cloud— target of attacks, which could threaten the security and resilience of the infrastructure under monitoring. In this paper, we propose a solution for improving the security of LoRa-based monitoring infrastructures, which is by far the most widely used LP-WAN protocol in the IIoT landscape. We combine two different trusted execution technologies, i.e., ARM TrustZone and Intel SGX, to preserve the chain-of-trust throughout the entire data cycle, i.e. from collection to transmission and processing, and finally to storage. An experimental evaluation is conducted on a real chemical storage infrastructure, managed by Attilio Carmagnani “AC” S.p.A.. We demonstrate the practicability of the proposed approach, i.e. we prove that our solution improves security while also satisfying the performance and energy consumption requirements of a real setup. The technique can be extended to other LP-WAN deployments with minor engineering efforts.","PeriodicalId":385392,"journal":{"name":"2021 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"The protection of LP-WAN Endpoints via TEE: a Chemical Storage Case Study\",\"authors\":\"L. Coppolino, S. D'Antonio, Giovanni Mazzeo, L. Romano, Irene Bonetti, Elena Spagnuolo\",\"doi\":\"10.1109/ISSREW53611.2021.00100\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Industrial IoT (IIoT) solutions typically rely on Low-Power Wide Area Network (LP-WAN) protocols to transmit data over long distances while preserving battery life. Regrettably, the distributed nature of LP-WAN deployments and the adoption of managed services make the endpoints —from the field up to the cloud— target of attacks, which could threaten the security and resilience of the infrastructure under monitoring. In this paper, we propose a solution for improving the security of LoRa-based monitoring infrastructures, which is by far the most widely used LP-WAN protocol in the IIoT landscape. We combine two different trusted execution technologies, i.e., ARM TrustZone and Intel SGX, to preserve the chain-of-trust throughout the entire data cycle, i.e. from collection to transmission and processing, and finally to storage. An experimental evaluation is conducted on a real chemical storage infrastructure, managed by Attilio Carmagnani “AC” S.p.A.. We demonstrate the practicability of the proposed approach, i.e. we prove that our solution improves security while also satisfying the performance and energy consumption requirements of a real setup. The technique can be extended to other LP-WAN deployments with minor engineering efforts.\",\"PeriodicalId\":385392,\"journal\":{\"name\":\"2021 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISSREW53611.2021.00100\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISSREW53611.2021.00100","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
The protection of LP-WAN Endpoints via TEE: a Chemical Storage Case Study
Industrial IoT (IIoT) solutions typically rely on Low-Power Wide Area Network (LP-WAN) protocols to transmit data over long distances while preserving battery life. Regrettably, the distributed nature of LP-WAN deployments and the adoption of managed services make the endpoints —from the field up to the cloud— target of attacks, which could threaten the security and resilience of the infrastructure under monitoring. In this paper, we propose a solution for improving the security of LoRa-based monitoring infrastructures, which is by far the most widely used LP-WAN protocol in the IIoT landscape. We combine two different trusted execution technologies, i.e., ARM TrustZone and Intel SGX, to preserve the chain-of-trust throughout the entire data cycle, i.e. from collection to transmission and processing, and finally to storage. An experimental evaluation is conducted on a real chemical storage infrastructure, managed by Attilio Carmagnani “AC” S.p.A.. We demonstrate the practicability of the proposed approach, i.e. we prove that our solution improves security while also satisfying the performance and energy consumption requirements of a real setup. The technique can be extended to other LP-WAN deployments with minor engineering efforts.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
