Brokering Policies and Execution Monitors for IoT Middleware
This work addresses security issues for IoT systems, but it is incremental as it builds on existing modular architectures.
The paper tackled security vulnerabilities in cloud-based IoT platforms, such as malicious disconnections and compromised devices, by extending an event-based architecture with brokering policies and execution monitors, resulting in a formalized protection scheme implemented in an open-source MQTT broker with evaluated performance impact.
Event-based systems lie at the heart of many cloud-based Internet-of-Things (IoT) platforms. This combination of the Broker architectural style and the Publisher-Subscriber design pattern provides a way for smart devices to communicate and coordinate with one another. The present design of these cloud-based IoT frameworks lacks measures to (i) protect devices against malicious cloud disconnections, (ii) impose information flow control among communicating parties, and (iii) enforce coordination protocols in the presence of compromised devices. In this work, we propose to extend the modular event-based system architecture of Fiege et al., to incorporate brokering policies and execution monitors, in order to address the three protection challenges mentioned above. We formalized the operational semantics of our protection scheme, explored how the scheme can be used to enforce BLP-style information flow control and RBAC-style protection domains, implemented the proposal in an open-source MQTT broker, and evaluated the performance impact of the protection mechanisms.