1,720,966 research outputs found
An optimized firewall anomaly resolution
Full text linkFirewalls are the key mechanism in cybersecurity, that has been widely used to ensure network security. In literature, several works have been proposed in the area of firewall rules managing, however, the correct firewall configuration still remains a complex and error-prone task. Anomalies among firewall rules can cause severe network breaches, such as allowing harmful packets to slip into a subnetwork or dropping legitimate traffic which in turn could hinder the correct availability of web services. This paper aims to help the network security administrators by introducing a formal approach that reduces the number of anomalies in firewalls’ configurations that the administrators are usually obligated to manually solve
Time-Sensitive Networking to Improve the Performance of Distributed Functional Safety Systems Implemented over Wi-Fi
Full text linkIndustry 4.0 has significantly improved the industrial manufacturing scenario in recent years. The Industrial Internet of Things (IIoT) enables the creation of globally interconnected smart factories, where constituent elements seamlessly exchange information. Industry 5.0 has further complemented these achievements, as it focuses on a human-centric approach where humans become part of this network of things, leading to a robust human–machine interaction. In this distributed, dynamic, and highly interconnected environment, functional safety is essential for adequately protecting people and machinery. The increasing availability of wireless networks makes it possible to implement distributed and flexible functional safety systems. However, such networks are known for introducing unwanted delays that can lead to safety performance degradation due to their inherent uncertainty. In this context, the Time-Sensitive Networking (TSN) standards present an attractive prospect for enhancing and ensuring acceptable behaviors. The research presented in this paper deals with the introduction of TSN to implement functional safety protocols for wireless networks. Among the available solutions, we selected Wi-Fi since it is a widespread network, often considered and deployed for industrial applications. The introduction of a reference functional safety protocol is detailed, along with an analysis of how TSN can enhance its behavior by evaluating relevant performance indexes. The evaluation pertains to a standard case study of an industrial warehouse, tested through practical simulations. The results demonstrate that TSN provides notable advantages, but it requires meticulous coordination with the Wi-Fi MAC layer protocol to guarantee improved performance
On the description of access control policies in networked industrial systems
Full text linkThe specification and verification of access control policies are fundamental steps in the process of securing industrial control systems and critical infrastructures.
The focus of this paper is on bridging the semantic gap between high-level access control policies specified in the Role-Based Access Control (RBAC) framework and the low-level security mechanisms actually implemented in the physical system.
Our approach is based on a novel kind of model, which includes two distinct views of the system, namely an RBAC-based specification and a low-level system de- scription. The descriptive capabilities of the model are presented through an example derived from a real proto- type plant for printed circuit boards re-manufacturing/de- manufacturing
Redundancy for MQTT Communication: An Evolution
No full textCritical infrastructure, utilities, and large enter-prises are increasingly complex. These sprawling systems, often geographically dispersed, rely on seamless coordination across vast networks. Typically, they use the internet and TCPIIP proto-cols for communication. However, ensuring system-level resilience requires exceptionally dependable network infrastructure. This paper proposes a solution built on a redundant version of the MQTT protocol, implemented directly at the network's endpoints. This approach ensures reliable communication even in the face of potential network issues. Additionally, the paper explores the potential for a future solution that analyzes multi-publisher/subscriber scenarios and, for this purpose, a prelimi-nary research on synchronizing communication among a larger number of devices within the network. The paper concludes by detailing the proposed solution, evaluating its effectiveness, and validating its practicality through experimentation
Time-Sensitive Networking and Software-Defined Networking: An Experimental Setup for Realistic Performances
No full textThe ever more used and widespread Time-Sensitive Networking (TSN) has changed real-time networks, enabling reliable communication for time-critical applications. At the same time Software-Defined Networking (SDN) has emerged as a solution to ensure proper quality of service for managing dynamic network configurations even in evolving topologies. This paper investigates the integration between TSN and SDN to enable dynamic network re-configuration and improve performance for time-critical applications. We present an experimental setup designed to evaluate this approach. The setup focuses on scenarios where an SDN controller can dynamically reroute critical data flows across different TSN network devices to avoid interference and maintain consistent Quality-of-Service (QoS)
A TSN-based approach to combine Real-time CAN network with in-vehicle Ethernet
No full textAs in-vehicle communication networks evolve to accommodate Advanced Driver Assistance Systems (ADAS), the limitations of the traditional Controller Area Network (CAN) protocol become apparent. This paper proposes a novel integration approach using Time-Sensitive Networking (TSN) to bridge the real-time CAN network with in-vehicle Ethernet, addressing the challenges posed by increased data demands. Our solution leverages a TSN-enabled gateway embedded in the switch to connect CAN and Ethernet, eliminating external hardware conversion seamlessly. By avoiding CAN frame aggregation, we prioritize minimal latency, which is evaluated through real-world experiments with various traffic profiles and TSN configurations. The use of 802.1Qav within the Linux kernel ensures timely and deterministic packet delivery, simplifying the integration process on a shared TSN-enabled hardware platform. Results demonstrate the effectiveness of our approach in meeting time-critical communication requirements, preserving CAN network real-time properties
IEEE 1588 (PTP) Over mmWave 5G NR: Preliminary Assessment of the Synchronization Accuracy for TSN Applications
No full textEvaluating the Integration of Wireless Time-Sensitive Networking with Software-Defined Networking for Dynamic Network Configuration
No full textThe introduction of Time-Sensitive Networking (TSN) is revolutionizing real-time networks and time-critical applications. Recent advancements in this field extended the TSN capabilities to wireless technologies, giving rise to the concept of wireless TSN (WTSN). This paper focuses on the integration of wireless TSN with Software-Defined Networking (SDN) to enable dynamic network configuration and improve the performance of time-sensitive applications. We present a practical test environment that uses a hybrid network configuration consisting of wireless and wired TSN links. The primary objective is to evaluate the effectiveness of combining a TSN-capable network with an SDN controller. This setup enables dynamic configuration and routing within the system, allowing for prompt actions to address network issues, such as seamlessly re-routing data paths between the two links due to an increase in latency or packet loss. A measurement setup using OpenVSwitch in the wireless TSN domain is presented, along with the evaluation of time synchronization and dynamic route selection capabilities
- …
