The University of Southampton
University of Southampton Institutional Repository

Towards a semantic modelling for threat analysis of IoT applications: a case study on transactive energy

Towards a semantic modelling for threat analysis of IoT applications: a case study on transactive energy
Towards a semantic modelling for threat analysis of IoT applications: a case study on transactive energy
The evolution of Internet-of-Things (IoT) is leading to an increasing number of new security issues. This is due to the nature of IoT devices which use lighter protocols and which may be either hacked or physically tampered with. Thus, common approaches for threat modelling are insufficient on IoT environments, since they hardly catch all possible threats related to physical and protocols vulnerabilities. Furthermore, in IoT scenarios multiple parties can be involved, like in a transactive energy scenario, where nodes of the network can trade energy each other. So, it is important to catch risks that an attack may lead to each involved party.
In this work, we propose a novel approach to model (i) the process list of a system and (ii) attacks towards it. Specifically, we extended the PROV-N semantic notation by including rules for modelling the attacks. We apply such modelling to ETSE [12], the architecture we proposed in the context of the PETRAS BlockIT project to enable energy trading among prosumers. ETSE manages the trading through a smart contract deployed on top of a blockchain distributed on the grid. Since in this context multiple parties are involved, we discuss possible issues that each attack may bring to the entire smart grid or to a specific prosumer.
Institute of Engineering and Technology, IET
Fadhel, Nawfal
e73b96f2-bf15-40cb-9af5-23c10ea8e319
Lombardi, Federico
78e41297-64c9-4c1e-9515-8eb59334a795
Aniello, Leonardo
9846e2e4-1303-4b8b-9092-5d8e9bb514c3
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Fadhel, Nawfal
e73b96f2-bf15-40cb-9af5-23c10ea8e319
Lombardi, Federico
78e41297-64c9-4c1e-9515-8eb59334a795
Aniello, Leonardo
9846e2e4-1303-4b8b-9092-5d8e9bb514c3
Margheri, Andrea
4b87c32d-3eaf-445e-8ac0-8207daace2e1
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7

Fadhel, Nawfal, Lombardi, Federico, Aniello, Leonardo, Margheri, Andrea and Sassone, Vladimiro (2019) Towards a semantic modelling for threat analysis of IoT applications: a case study on transactive energy. In IET Living in the Internet of Things 2019. Institute of Engineering and Technology, IET..

Record type: Conference or Workshop Item (Paper)

Abstract

The evolution of Internet-of-Things (IoT) is leading to an increasing number of new security issues. This is due to the nature of IoT devices which use lighter protocols and which may be either hacked or physically tampered with. Thus, common approaches for threat modelling are insufficient on IoT environments, since they hardly catch all possible threats related to physical and protocols vulnerabilities. Furthermore, in IoT scenarios multiple parties can be involved, like in a transactive energy scenario, where nodes of the network can trade energy each other. So, it is important to catch risks that an attack may lead to each involved party.
In this work, we propose a novel approach to model (i) the process list of a system and (ii) attacks towards it. Specifically, we extended the PROV-N semantic notation by including rules for modelling the attacks. We apply such modelling to ETSE [12], the architecture we proposed in the context of the PETRAS BlockIT project to enable energy trading among prosumers. ETSE manages the trading through a smart contract deployed on top of a blockchain distributed on the grid. Since in this context multiple parties are involved, we discuss possible issues that each attack may bring to the entire smart grid or to a specific prosumer.

Text
Towards a Semantic Modelling for Threat Analysis of IoT Applications: a Case Study on Transactive Energy - Accepted Manuscript
Restricted to Repository staff only
Request a copy

More information

Published date: 2019

Identifiers

Local EPrints ID: 431127
URI: https://eprints.soton.ac.uk/id/eprint/431127
PURE UUID: 4564daf9-2976-42bd-adef-e59fc89b4def
ORCID for Federico Lombardi: ORCID iD orcid.org/0000-0001-6463-8722
ORCID for Andrea Margheri: ORCID iD orcid.org/0000-0002-5048-8070

Catalogue record

Date deposited: 24 May 2019 16:30
Last modified: 25 May 2019 00:30

Export record

Contributors

Author: Nawfal Fadhel
Author: Federico Lombardi ORCID iD
Author: Leonardo Aniello
Author: Andrea Margheri ORCID iD
Author: Vladimiro Sassone

University divisions

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of https://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×