Publication:

Clouds of Things Need Information Flow Control with Hardware Roots of Trust

Thumbnail Image

Open/View Files

cloudcom-2015.pdf (137.88 KB)

Date

2015

Authors

Published Version

10.1109/CloudCom.2015.41

Journal Title

Journal ISSN

Volume Title

Publisher

IEEE
The Harvard community has made this article openly available. Please share how this access benefits you.

Research Projects

Organizational Units

Journal Issue

Citation

Pasquier, Thomas, Jatinder Singh, and Jean Bacon. 2015. Clouds of Things need Information Flow Control with Hardware Roots of Trust. In 2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom), Vancouver, BC, Canada, Nov. 30 - Dec. 3, 2015.

Abstract

There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control (IFC) that allows: (1) the continuous, end-to-end enforcement of data flow policy, and (2) the generation of provenance-like audit logs to demon- strate policy adherence and contractual/regulatory compliance. Further, we discuss the role of Trusted Platform Modules (TPMs) in supporting such a system, by providing hardware roots of trust. TPMs can be leveraged to validate software configurations, including the IFC enforcement mechanism, both in the cloud and externally via remote attestation.

Description

Other Available Sources

Research Data

Keywords

Internet of Things, Information Flow Control, Provenance, Hardware Roots of Trust, Remote Attestatio

Terms of Use

This article is made available under the terms and conditions applicable to Open Access Policy Articles (OAP), as set forth at Terms of Service

URI

http://nrs.harvard.edu/urn-3:HUL.InstRepos:36305748

Collections

FAS Scholarly Articles

Endorsement

Review

Supplemented By

Related Stories