1 / 16

A Security Framework for Smart Ubiquitous Industrial Resources

A Security Framework for Smart Ubiquitous Industrial Resources. Anton Naumenko, Artem Katasonov and Vagan Terziyan. Dept. of Mathematical Information Technology, University of Jyväskylä P.O. Box 35, FIN-40014, Jyväskylä, Finland.

chi
Download Presentation

A Security Framework for Smart Ubiquitous Industrial Resources

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. A Security Framework for Smart Ubiquitous Industrial Resources Anton Naumenko, Artem Katasonov and Vagan Terziyan Dept. of Mathematical Information Technology, University of Jyväskylä P.O. Box 35, FIN-40014, Jyväskylä, Finland We are grateful to National Technology Agency of Finland, Agora Center (University of Jyväskylä), and cooperating companies (ABB, Metso Automation, TeliaSonera, TietoEnator, and Jyväskylä Science Park) of the SmartResource research project for the financial support.

  2. Introduction • Conventional approaches to manage and control security seem to have reached their limits in new complex environments. • These environments are open, dynamic, heterogeneous, distributed, self-managing, collaborative, international, nomadic, ubiquitous, etc. • We are currently working on a middleware platform focused on the industrial needs, UBIWARE. • UBIWARE integrates Ubiquitous Computing with Semantic Web, Distributed AI, Security and Privacy, and Enterprise Application Integration. • In this paper, we describe our long-term vision for the security management in complex multi-agent systems like UBIWARE, SURPAS. • SURPAS aims at policy-based optimal managing of security measures. A Security Framework for Smart Ubiquitous Industrial Resources

  3. Contents • The UBIWARE concept • The motivating industrial case • The security implications of UBIWARE • The SURPAS research framework • The SmartResource platform • The SURPAS abstract architecture A Security Framework for Smart Ubiquitous Industrial Resources

  4. The UBIWARE concept operator field crew expert consumers owner manager administration USERS UBIWARE W3C Semantic Web Standards Distributed Semantic Data Warehousing Services Web Service Production Automation ERPs, CRMs, SCADAs, Portals, etc External Applications Intelligence A Security Framework for Smart Ubiquitous Industrial Resources

  5. The security implications of UBIWARE • Existing security measures for the technologies on which UBIWARE relies are not in a mature stage. • The security cannot be added to UBIWARE later. Security design has to be conducted throughout the development of UBIWARE. • Characteristics of UBIWARE have different impact on security • Openness • Dynamics • Heterogeneity • Distributed nature • Collaborative social nature • Internationality • Self-management • Mobility • Ambient intelligence and pervasiveness A Security Framework for Smart Ubiquitous Industrial Resources

  6. The Motivating Industrial Case • Industrial impact, business benefits and security issues of UBIWARE for a domain of distributed power network management • ABB is a global vendor of hardware and software for power networks. • The power networks themselves are owned, controlled and maintained by some local companies. • Four scenarios with potential add-value. • Information exchange between sub-networks • Transferring the tacit knowledge of humans to machines • New business model (Externalization of services) • Integration of contextual data for fault localization and risk analysis A Security Framework for Smart Ubiquitous Industrial Resources

  7. Information exchange between sub-networks Heterogeneity of applications DATA DATA DATA NO DATA Semantic response ? Semantic request How to elaborate flexible and expressive framework for the distributed, collaborative and policy-based management of security? A Security Framework for Smart Ubiquitous Industrial Resources

  8. Transferring the tacit knowledge Service - Facilitator History data Algorithm Learning Algorithm A Security Framework for Smart Ubiquitous Industrial Resources Algorithm Algorithm

  9. New business model ABB webService Algorithm Algorithm Algorithm Algorithm Algorithm Algorithm Secure provisioning of (semantic) web services is still an open research question How to treat the privacy concerns of the owners of different sub-networks? A Security Framework for Smart Ubiquitous Industrial Resources

  10. Integration of contextual data: risk analysis Context Provider Fault prediction: Context Provider Service - Facilitator Context Provider Context Provider How to compute reputation and trust for the external contextual services because these issues influence the confidence in predicted risks, fault locations, etc A Security Framework for Smart Ubiquitous Industrial Resources

  11. The SURPAS research framework • UBIWARE: Configuring and adding new functionality to the underlying industrial environment on-the-fly by changing high level declarative descriptions. • SURPAS: Including new, and reconfiguring existing, security mechanisms, for the optimal secure state in response to the dynamically changing environment. SURPAS Methodology SURPAS Conceptual Semantics SURPAS Functionality Functional Semantics Algorithms Abstract Architecture Reference Implementation Enforcement Function Administration Function UBIWARE Domains Maintenance Services in Paper Industry Power-Network Management Telecom Network Services etc Merged semantics of domains and SURPAS SURPAS in UBIWARE Applications A Security Framework for Smart Ubiquitous Industrial Resources

  12. The SmartResource platform • UBIWARE relies on results from the SmartResource project (Proactive Self-Maintained Resources in Semantic Web, see http://www.cs.jyu.fi/ai/OntoGroup/SmartResource_details.htm) • SmartResource technology gives a possibility to be smartto every resource in an industrial system. • SmartResource is able • To proactively sense, monitor and control own state, • To communicate with other components, • To compose and utilize own and external experience and functionality for self-diagnostics and self-maintenance. A Security Framework for Smart Ubiquitous Industrial Resources

  13. Externalization of behaviour models Repository of the Roles SmartResource Agent .class Assign Role Agent’s Roles activity Live .class Beliefs storage Activity Activity Activity Activity activity • Advantages include: • Flexibility for control and coordination • Remote control • Up-to-date role scripts • An agent may ‘learn’ how to play a new role in run-time • Inter-agent behavior awareness • To ‘understand’ how to interact with another agent • To coordinate behavior of several agents A Security Framework for Smart Ubiquitous Industrial Resources

  14. On-demand access of RABs Pool of Atomic Behaviours Repository of the Roles SmartResource Agent .class Assign Role Agent’s Roles activity Live .class Beliefs storage Activity Activity Activity Activity activity • Added advantages: • Ability to ‘learn’ new behaviours • “Light start” with on-demand extension of functionality A Security Framework for Smart Ubiquitous Industrial Resources

  15. The SURPAS Agent’s architecture SmartResource Secure Agent Pool of Security Mechanisms SURPAS Policy Enforcement Mechanism Mechanism Mechanism Assign a role activity SURPAS Policy Live activity with Repository of Policies Agent’s Roles Beliefs storage Activity Activity Activity Activity Reusable atomic behaviours Pool of Atomic Behaviours Repository of Roles A Security Framework for Smart Ubiquitous Industrial Resources

  16. Conclusions • UBIWARE targets physical world objects and thus put security as the core need-to-be-addressed issue. • We presented • The SURPAS long-term vision of policy-based optimal management of security in multi-agent systems like UBIWARE. • The security implications of UBIWARE. • The motivating industrial case. • The SURPAS research framework. • The SURPAS abstract architecture. • SURPAS as an ambitious target further demands • prototyping of ideas, • reference implementations, • industrial deployments and evaluations, • rigorous and convincing specification of advantages. A Security Framework for Smart Ubiquitous Industrial Resources

More Related