Secure, Service Oriented Data Communication Between Local IoT Clouds

OData support
Dr. Varga Pál
Department of Telecommunications and Media Informatics

Due to the great evolution of infocommunication and the prevalence of connectable sensors and actuators, IoT (Internet of Things) frameworks have become very popular and widely available. We are building more and more complex IoT applications, where a lot of sensors and other intelligent components work together. These concepts and devices - that are related to Internet of Things - are widely used in the industry as well. In this context, they are then called IIoT (Industrial Internet of Things).

IoT devices have constrained resources and communication capabilities. Therefore, the implementation of secure communication between them is a major technological challenge for the engineers. The issue of security is an essential aspect: we should not leave them an easy target for the attackers. The concept of local automation clouds helps tackling the issues of real-time restrictions, ergonomic engineering and handling the various levels of security. Still, some services should be able to reach over inbetween such closed, local networks (in here called “inter-cloud servicing”). Naturally, this has to be aided by proper security mechanisms as well.

In my paper, I provide a brief overview of the Arrowhead framework that focuses on industrial automation – for which the utilization of such closed, local automation-related networks (clouds) are inevitable. The aim of this framework is to provide a comprehensive, secure skeleton for the collaboration of embedded systems.

However, in order to provide secure data communication for inter-cloud services, new methods need to be introduced for Arrowhead. As part of my solution, I would like to expand the framework with a new module, which collaborates with the existing core systems. This new module shall establish the secure data path between two local clouds with the help of TCP sockets and a RabbitMQ broker (based on AMQP - Advanced Message Queueing Protocol). The implementation for the proof of concept is written in Java. This paper describes the planning, implementation and verification steps of this solution.


Please sign in to download the files of this thesis.