Towards a Collection of Security and Privacy Patterns

Towards a Collection of Security and Privacy Patterns

Security and privacy (SP)-related challenges constitute a significant barrier to the wider adoption of Internet of Things (IoT)/Industrial IoT (IIoT) devices and the associated novel applications and services. In this context, patterns, which are constructs encoding re-usable solutions to common pro...

Full description

Bibliographic Details
Main Authors: Manos Papoutsakis, Konstantinos Fysarakis, George Spanoudakis, Sotiris Ioannidis, Konstantina Koloutsou
Format: Article
Language:English
Published: MDPI AG 2021-02-01
Series:Applied Sciences
Subjects:
pattern-based engineering
security patterns
privacy patterns
pattern taxonomy
Internet of Things (IoT)
Industrial Internet of Things (IIoT)
Online Access:https://www.mdpi.com/2076-3417/11/4/1396
id doaj-f7262ec99cd54a1784eb09830c3d1e2d
record_format Article
spelling doaj-f7262ec99cd54a1784eb09830c3d1e2d2021-02-05T00:01:24ZengMDPI AGApplied Sciences2076-34172021-02-01111396139610.3390/app11041396Towards a Collection of Security and Privacy PatternsManos Papoutsakis0Konstantinos Fysarakis1George Spanoudakis2Sotiris Ioannidis3Konstantina Koloutsou4Institute of Computer Science, Foundation for Research and Technology, 700 13 Heraklion, GreeceSphynx Technology Solutions AG, 6300 Zug, SwitzerlandDepartment of Computer Science, City University of London, London EC1V 0HB, UKInstitute of Computer Science, Foundation for Research and Technology, 700 13 Heraklion, GreeceSphynx Technology Solutions AG, 6300 Zug, SwitzerlandSecurity and privacy (SP)-related challenges constitute a significant barrier to the wider adoption of Internet of Things (IoT)/Industrial IoT (IIoT) devices and the associated novel applications and services. In this context, patterns, which are constructs encoding re-usable solutions to common problems and building blocks to architectures, can be an asset in alleviating said barrier. More specifically, patterns can be used to encode dependencies between SP properties of individual smart objects and corresponding properties of orchestrations (compositions) involving them, facilitating the design of IoT solutions that are secure and privacy-aware by design. Motivated by the above, this work presents a survey and taxonomy of SP patterns towards the creation of a usable pattern collection. The aim is to enable decomposition of higher-level properties to more specific ones, matching them to relevant patterns, while also creating a comprehensive overview of security- and privacy-related properties and sub-properties that are of interest in IoT/IIoT environments. To this end, the identified patterns are organized using a hierarchical taxonomy that allows their classification based on provided property, context, and generality, while also showing the relationships between them. The two high-level properties, Security and Privacy, are decomposed to a first layer of lower-level sub-properties such as confidentiality and anonymity. The lower layers of the taxonomy, then, include implementation-level enablers. The coverage that these patterns offer in terms of the considered properties, data states (data in transit, at rest, and in process), and platform connectivity cases (within the same IoT platform and across different IoT platforms) is also highlighted. Furthermore, pointers to extensions of the pattern collection to include additional patterns and properties, including Dependability and Interoperability, are given. Finally, to showcase the use of the presented pattern collection, a practical application is detailed, involving the pattern-driven composition of IoT/IIoT orchestrations with SP property guarantees.https://www.mdpi.com/2076-3417/11/4/1396pattern-based engineeringsecurity patternsprivacy patternspattern taxonomyInternet of Things (IoT)Industrial Internet of Things (IIoT)
collection DOAJ
language English
format Article
sources DOAJ
author Manos Papoutsakis
Konstantinos Fysarakis
George Spanoudakis
Sotiris Ioannidis
Konstantina Koloutsou
spellingShingle Manos Papoutsakis
Konstantinos Fysarakis
George Spanoudakis
Sotiris Ioannidis
Konstantina Koloutsou
Towards a Collection of Security and Privacy Patterns
Applied Sciences
pattern-based engineering
security patterns
privacy patterns
pattern taxonomy
Internet of Things (IoT)
Industrial Internet of Things (IIoT)
author_facet Manos Papoutsakis
Konstantinos Fysarakis
George Spanoudakis
Sotiris Ioannidis
Konstantina Koloutsou
author_sort Manos Papoutsakis
title Towards a Collection of Security and Privacy Patterns
title_short Towards a Collection of Security and Privacy Patterns
title_full Towards a Collection of Security and Privacy Patterns
title_fullStr Towards a Collection of Security and Privacy Patterns
title_full_unstemmed Towards a Collection of Security and Privacy Patterns
title_sort towards a collection of security and privacy patterns
publisher MDPI AG
series Applied Sciences
issn 2076-3417
publishDate 2021-02-01
description Security and privacy (SP)-related challenges constitute a significant barrier to the wider adoption of Internet of Things (IoT)/Industrial IoT (IIoT) devices and the associated novel applications and services. In this context, patterns, which are constructs encoding re-usable solutions to common problems and building blocks to architectures, can be an asset in alleviating said barrier. More specifically, patterns can be used to encode dependencies between SP properties of individual smart objects and corresponding properties of orchestrations (compositions) involving them, facilitating the design of IoT solutions that are secure and privacy-aware by design. Motivated by the above, this work presents a survey and taxonomy of SP patterns towards the creation of a usable pattern collection. The aim is to enable decomposition of higher-level properties to more specific ones, matching them to relevant patterns, while also creating a comprehensive overview of security- and privacy-related properties and sub-properties that are of interest in IoT/IIoT environments. To this end, the identified patterns are organized using a hierarchical taxonomy that allows their classification based on provided property, context, and generality, while also showing the relationships between them. The two high-level properties, Security and Privacy, are decomposed to a first layer of lower-level sub-properties such as confidentiality and anonymity. The lower layers of the taxonomy, then, include implementation-level enablers. The coverage that these patterns offer in terms of the considered properties, data states (data in transit, at rest, and in process), and platform connectivity cases (within the same IoT platform and across different IoT platforms) is also highlighted. Furthermore, pointers to extensions of the pattern collection to include additional patterns and properties, including Dependability and Interoperability, are given. Finally, to showcase the use of the presented pattern collection, a practical application is detailed, involving the pattern-driven composition of IoT/IIoT orchestrations with SP property guarantees.
topic pattern-based engineering
security patterns
privacy patterns
pattern taxonomy
Internet of Things (IoT)
Industrial Internet of Things (IIoT)
url https://www.mdpi.com/2076-3417/11/4/1396
work_keys_str_mv AT manospapoutsakis towardsacollectionofsecurityandprivacypatterns
AT konstantinosfysarakis towardsacollectionofsecurityandprivacypatterns
AT georgespanoudakis towardsacollectionofsecurityandprivacypatterns
AT sotirisioannidis towardsacollectionofsecurityandprivacypatterns
AT konstantinakoloutsou towardsacollectionofsecurityandprivacypatterns
_version_ 1724284616856043520

Similar Items