Secure Mobile Environment Sensing
This pilot study probes the power of multi-layered security mechanisms in the M-Sec platform, leveraging the mobile sensing platform that has been operated in Fujisawa city in Japan for three years. The IoT devices (sensors), the cloud system (servers of a sensor data exchange platform), and applications consuming sensor data streams included in the mobile sensing platform are extended with multiple security mechanisms. The IoT devices are secured by hardening and an intrusion detection system. The former is achieved by existing best practices, such as closing unnecessary network ports. The latter is brought by the M-Sec project as one of its technical components.
The traffic between the IoT devices and the cloud system is protected by the use of Transport Layer Security (TLS), which is a point-to-point encryption mechanism. In the cloud system, a sophisticated authentication mechanism is provided by the project in order to protect the data stream. In addition, end-to-end sensor data stream delivery is secured by a light-weight encryption mechanism and will be made configurable and manageable by a security management tool. The pilot leverages at least 10 garbage collection trucks that are part of the mobile sensing platform.
A system architecture has been established and the security threats have been identified. Corresponding solutions have been determined to secure the IoT devices mounted on garbage trucks and SOX servers in Keio University as well as the data streams between data publishers and subscribers.