TY - JOUR
T1 - IoTCop
T2 - A Blockchain-Based Monitoring Framework for Detection and Isolation of Malicious Devices in Internet-of-Things Systems
AU - Seshadri, Sreenivas Sudarshan
AU - Rodriguez, David
AU - Subedi, Mukunda
AU - Choo, Kim Kwang Raymond
AU - Ahmed, Sara
AU - Chen, Qian
AU - Lee, Junghee
N1 - Funding Information:
Manuscript received April 11, 2020; revised August 12, 2020; accepted September 2, 2020. Date of publication September 7, 2020; date of current version February 19, 2021. This work was supported by a Korea University Grant. (Corresponding author: Junghee Lee.) Sreenivas Sudarshan Seshadri, David Rodriguez, Sara Ahmed, and Qian Chen are with the Department of Electrical and Computer Engineering, University of Texas at San Antonio, San Antonio, TX 78249 USA (e-mail: sreenivassudarshan.seshadri@my.utsa.edu; drodriguez1724@yahoo.com; sara.ahmed@utsa.edu; guenevereqian.chen@ utsa.edu).
Publisher Copyright:
© 2014 IEEE.
PY - 2021/3/1
Y1 - 2021/3/1
N2 - Unlike conventional servers housed in a centralized and secured indoor environment (e.g., data centers), Internet-of-Things (IoT) devices such as sensor/actuator are geographically distributed and may be closely located to the physical systems where IoT devices are utilized. However, the resource-constrained nature of IoT devices limits their capacity to deploy sophisticated security solutions. The proposed approach assumes that a device can be compromised and hence, the need to be able to automatically isolate the compromised device(s). In order to enforce security policies even when devices are compromised, we propose using blockchain in the monitoring framework. Unlike existing centralized or distributed security solutions (which do not consider the possibility that the solutions themselves can be compromised), the proposed blockchain-based framework can enforce the security policies as long as a majority of the devices are not compromised. By employing the permissioned blockchain (Hyperledger Fabric) and add-on hardware modules, the proposed framework offers significantly lower latency and overhead compared to permissionless blockchain frameworks (e.g., Ethereum) and allows existing IoT devices to join the framework without modification.
AB - Unlike conventional servers housed in a centralized and secured indoor environment (e.g., data centers), Internet-of-Things (IoT) devices such as sensor/actuator are geographically distributed and may be closely located to the physical systems where IoT devices are utilized. However, the resource-constrained nature of IoT devices limits their capacity to deploy sophisticated security solutions. The proposed approach assumes that a device can be compromised and hence, the need to be able to automatically isolate the compromised device(s). In order to enforce security policies even when devices are compromised, we propose using blockchain in the monitoring framework. Unlike existing centralized or distributed security solutions (which do not consider the possibility that the solutions themselves can be compromised), the proposed blockchain-based framework can enforce the security policies as long as a majority of the devices are not compromised. By employing the permissioned blockchain (Hyperledger Fabric) and add-on hardware modules, the proposed framework offers significantly lower latency and overhead compared to permissionless blockchain frameworks (e.g., Ethereum) and allows existing IoT devices to join the framework without modification.
KW - Blockchain
KW - Internet-of-Things (IoT)
KW - monitoring
KW - security
UR - http://www.scopus.com/inward/record.url?scp=85098368986&partnerID=8YFLogxK
U2 - 10.1109/JIOT.2020.3022033
DO - 10.1109/JIOT.2020.3022033
M3 - Article
AN - SCOPUS:85098368986
SN - 2327-4662
VL - 8
SP - 3346
EP - 3359
JO - IEEE Internet of Things Journal
JF - IEEE Internet of Things Journal
IS - 5
M1 - 9187247
ER -