Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions

Konstantinos Loupos; Sokratis Vavilis; Harris Niavis; Fotis Michalopoulos; Konstantinos Dafloukas; Antonio Skarmeta; Jesús García; Angel Palomares; Hui Song; Rustem Dautov; Rosella Mancilla; Francesca Costantino; Dimitri Van Landuyt; Sam Michiels; Stefan More; Christos Xenakis; Konstantinos Krilakis

Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions

Konstantinos Loupos^*, Sokratis Vavilis, Harris Niavis, Fotis Michalopoulos, Konstantinos Dafloukas, Antonio Skarmeta, Jesús García, Angel Palomares, Hui Song, Rustem Dautov, Rosella Mancilla, Francesca Costantino, Dimitri Van Landuyt, Sam Michiels, Stefan More, Christos Xenakis, Konstantinos Krilakis

^*Corresponding author for this work

Institute of Applied Information Processing and Communications (7050)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

This publication includes the ERATOSTHENES project outcomes on devising a novel distributed, automated, auditable, yet privacy-respectful, Trust and Identity Management Framework intended to dynamically and holistically manage the lifecycle of IoT devices, strengthening trust, identities, and resilience in the entire IoT ecosystem, supporting the enforcement of the NIS directive, GDPR and the Cybersecurity Act.

The publication includes an analysis of the architecture and outcomes of the following research innovations: (a) Cybersecurity features in IoT devices through deployment of Trust Agents and continuous trust evaluation within the network in a contextual and social approach; (b) a decentralised identity management mechanisms to conciliate requirements of self-sovereignty and privacy preservation in a distributed/transparent trust model along with disposable identities; (c) self-encryption/decryption at device-level with a whole system automated recovery process after an attack based on a multi-layer recovery model; (d) threat analysis models based on federated learning and edge execution to continuously monitor devices and detect attacks; (e) collaborative IoT threat intelligence sharing across ledgers to adapt detection/defense mechanism to the evolving security conditions and assist the IoT life-cycle; (f) integration of Physical Unclonable Functions in trust framework and distributed ledgers.

Original language	English
Title of host publication	Embedded World Conference 2024
Place of Publication	Nuremberg, Germany
Publication status	Accepted/In press - 11 Apr 2024
Event	Embedded World 2024 - Nürnberg, Germany Duration: 9 Apr 2024 → 11 Apr 2024

Conference

Conference	Embedded World 2024
Country/Territory	Germany
City	Nürnberg
Period	9/04/24 → 11/04/24

EU - ERATOSTHENES - Secure management of IoT devices lifecycle through identities, trust and distributed ledgers
Tauber, A.
1/10/21 → 31/03/25
Project: Research project

Cite this

Loupos, K., Vavilis, S., Niavis, H., Michalopoulos, F., Dafloukas, K., Skarmeta, A., García, J., Palomares, A., Song, H., Dautov, R., Mancilla, R., Costantino, F., Van Landuyt, D., Michiels, S., More, S., Xenakis, C., & Krilakis, K. (Accepted/In press). Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions. In Embedded World Conference 2024

Loupos, K, Vavilis, S, Niavis, H, Michalopoulos, F, Dafloukas, K, Skarmeta, A, García, J, Palomares, A, Song, H, Dautov, R, Mancilla, R, Costantino, F, Van Landuyt, D, Michiels, S, More, S, Xenakis, C & Krilakis, K 2024, Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions. in Embedded World Conference 2024. Nuremberg, Germany, Embedded World 2024, Nürnberg, Germany, 9/04/24.

@inproceedings{ac993c3a58cd4d7bb95a6862769b1de5,

title = "Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions",

abstract = "This publication includes the ERATOSTHENES project outcomes on devising a novel distributed, automated, auditable, yet privacy-respectful, Trust and Identity Management Framework intended to dynamically and holistically manage the lifecycle of IoT devices, strengthening trust, identities, and resilience in the entire IoT ecosystem, supporting the enforcement of the NIS directive, GDPR and the Cybersecurity Act.The publication includes an analysis of the architecture and outcomes of the following research innovations: (a) Cybersecurity features in IoT devices through deployment of Trust Agents and continuous trust evaluation within the network in a contextual and social approach; (b) a decentralised identity management mechanisms to conciliate requirements of self-sovereignty and privacy preservation in a distributed/transparent trust model along with disposable identities; (c) self-encryption/decryption at device-level with a whole system automated recovery process after an attack based on a multi-layer recovery model; (d) threat analysis models based on federated learning and edge execution to continuously monitor devices and detect attacks; (e) collaborative IoT threat intelligence sharing across ledgers to adapt detection/defense mechanism to the evolving security conditions and assist the IoT life-cycle; (f) integration of Physical Unclonable Functions in trust framework and distributed ledgers.",

author = "Konstantinos Loupos and Sokratis Vavilis and Harris Niavis and Fotis Michalopoulos and Konstantinos Dafloukas and Antonio Skarmeta and Jes{\'u}s Garc{\'i}a and Angel Palomares and Hui Song and Rustem Dautov and Rosella Mancilla and Francesca Costantino and {Van Landuyt}, Dimitri and Sam Michiels and Stefan More and Christos Xenakis and Konstantinos Krilakis",

year = "2024",

month = apr,

day = "11",

language = "English",

booktitle = "Embedded World Conference 2024",

note = "Embedded World 2024 ; Conference date: 09-04-2024 Through 11-04-2024",

}

TY - GEN

T1 - Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions

AU - Loupos, Konstantinos

AU - Vavilis, Sokratis

AU - Niavis, Harris

AU - Michalopoulos, Fotis

AU - Dafloukas, Konstantinos

AU - Skarmeta, Antonio

AU - García, Jesús

AU - Palomares, Angel

AU - Song, Hui

AU - Dautov, Rustem

AU - Mancilla, Rosella

AU - Costantino, Francesca

AU - Van Landuyt, Dimitri

AU - Michiels, Sam

AU - More, Stefan

AU - Xenakis, Christos

AU - Krilakis, Konstantinos

PY - 2024/4/11

Y1 - 2024/4/11

N2 - This publication includes the ERATOSTHENES project outcomes on devising a novel distributed, automated, auditable, yet privacy-respectful, Trust and Identity Management Framework intended to dynamically and holistically manage the lifecycle of IoT devices, strengthening trust, identities, and resilience in the entire IoT ecosystem, supporting the enforcement of the NIS directive, GDPR and the Cybersecurity Act.The publication includes an analysis of the architecture and outcomes of the following research innovations: (a) Cybersecurity features in IoT devices through deployment of Trust Agents and continuous trust evaluation within the network in a contextual and social approach; (b) a decentralised identity management mechanisms to conciliate requirements of self-sovereignty and privacy preservation in a distributed/transparent trust model along with disposable identities; (c) self-encryption/decryption at device-level with a whole system automated recovery process after an attack based on a multi-layer recovery model; (d) threat analysis models based on federated learning and edge execution to continuously monitor devices and detect attacks; (e) collaborative IoT threat intelligence sharing across ledgers to adapt detection/defense mechanism to the evolving security conditions and assist the IoT life-cycle; (f) integration of Physical Unclonable Functions in trust framework and distributed ledgers.

AB - This publication includes the ERATOSTHENES project outcomes on devising a novel distributed, automated, auditable, yet privacy-respectful, Trust and Identity Management Framework intended to dynamically and holistically manage the lifecycle of IoT devices, strengthening trust, identities, and resilience in the entire IoT ecosystem, supporting the enforcement of the NIS directive, GDPR and the Cybersecurity Act.The publication includes an analysis of the architecture and outcomes of the following research innovations: (a) Cybersecurity features in IoT devices through deployment of Trust Agents and continuous trust evaluation within the network in a contextual and social approach; (b) a decentralised identity management mechanisms to conciliate requirements of self-sovereignty and privacy preservation in a distributed/transparent trust model along with disposable identities; (c) self-encryption/decryption at device-level with a whole system automated recovery process after an attack based on a multi-layer recovery model; (d) threat analysis models based on federated learning and edge execution to continuously monitor devices and detect attacks; (e) collaborative IoT threat intelligence sharing across ledgers to adapt detection/defense mechanism to the evolving security conditions and assist the IoT life-cycle; (f) integration of Physical Unclonable Functions in trust framework and distributed ledgers.

M3 - Conference paper

BT - Embedded World Conference 2024

CY - Nuremberg, Germany

T2 - Embedded World 2024

Y2 - 9 April 2024 through 11 April 2024

ER -

Lifecycle Management of IoT Devices Via Digital Identities Management and Distributed Ledgers Solutions

Abstract

Conference

Projects

EU - ERATOSTHENES - Secure management of IoT devices lifecycle through identities, trust and distributed ledgers

Cite this