Continuous Deployment of Trustworthy Smart IoT Systems

Nicolas Ferry, Phu H. Nguyen, Hui Song, Erkuden Rios, Eider Iturbe, Satur Martinez, Angel Rego
2020 Journal of Object Technology  
While the next generation of IoT systems need to perform distributed processing and coordinated behaviour across IoT, Edge and Cloud infrastructures, their development and operation are still challenging. A major challenge is the high heterogeneity of their infrastructure, which broadens the surface for security attacks and increases the complexity of maintaining and evolving such complex systems. In this paper, we present our approach for Generation and Deployment of Smart IoT Systems
more » ... to tame this complexity. GeneSIS leverages model-driven engineering to support the DevSecOps of Smart IoT Systems (SIS). More precisely, GeneSIS includes: (i) a domain specific modelling language to specify the deployment of SIS over IoT, Edge and Cloud infrastructure with the necessary concepts for security and privacy; and (ii) a models@run.time engine to enact the orchestration, deployment, and adaptation of these SIS. The results from our smart building case study have shown that GeneSIS can support security by design from the development (via deployment) to the operation of IoT systems and back again in a DevSecOps loop. In other words, GeneSIS enables IoT systems to keep up security and adapt to evolving conditions and threats while maintaining their trustworthiness. 2. It enables to cope with security and privacy concerns of SIS as it offers necessary concepts to specify security and privacy requirements and to support the automatic deployment of the associated security and privacy mechanisms. 3. By leveraging the Models@run.time approach, the same language and tool are used for the continuous deployment of SIS (including the monitoring of the deployment progressi.e., monitoring if hosts are still reachable and if software component are still running, and the dynamic adaptation of a deploymenti.e.,
doi:10.5381/jot.2020.19.2.a16 fatcat:2s43wrhgo5bpbf5rjnjpahaycu