1,721,150 research outputs found
Semantic-based distributed ledger technology for pervasive cyber-physical systems
Full text linkL'evoluzione dei sistemi cyberfisici (Cyber-Physical System, CPS) e delle Distributed Ledger Technology (DLT) rappresenta un passo significativo nella progettazione di infrastrutture sicure e intelligenti in diversi ambiti, tra cui l'industria manifatturiera, le smart city e l'Internet of Thing (IoT). Con l'integrazione sempre più stretta delle capacità computazionali dei sistemi CPS con i processi fisici, diventa essenziale una gestione dei dati robusta, trasparente e decentralizzata. Le DLT, in particolare la blockchain, offrono una soluzione garantendo l'integrità dei dati e abilitando interazioni sicure peer-to-peer, risultando ideali per soddisfare i requisiti di fiducia e visibilità delle informazioni negli ambienti CPS.
In questo contesto, la tesi presenta un framework basato su tecnologie semantiche per integrare le DLT nei sistemi CPS, sfruttando il Semantic Web of Thing (SWoT) per migliorare il processo decisionale, la gestione delle risorse e il ragionamento automatico nei sistemi decentralizzati. L'architettura proposta affronta sfide chiave come scalabilità, sicurezza e interoperabilità, combinando le DLT con tecnologie semantiche per consentire ai dispositivi con risorse limitate di eseguire compiti complessi di ragionamento localmente, mantenendo l'integrità e la fiducia dei dati a livello di sistema.
I principali contributi del framework includono: (1) un layer di knowledge representation che supporta il resource discovery avanzato e la selezione dei servizi ottimizzata mediante ragionamento automatico; (2) un modello di apprendimento federato che abilita l'addestramento sicuro e decentralizzato dei modelli tra dispositivi edge e IoT, preservando la privacy dei dati e ottimizzando l'efficienza della rete; e (3) un componente blockchain arricchito semanticamente che utilizza smart contract e matchmaking semantico per gestire e prioritizzare dinamicamente le risorse. Una validazione sperimentale approfondita, inclusa un'applicazione pratica sulla mobilità sostenibile per veicoli elettrici, dimostra l'applicabilità del framework a scenari reali di CPS, evidenziando miglioramenti nella gestione dei dati, nella scalabilità e nell'utilizzo delle risorse.The evolution of Cyber-Physical Systems (CPSs) and Distributed Ledger Technologies (DLTs) marks a significant step forward in building secure and intelligent infrastructures across various domains, including manufacturing, smart cities, and the Internet of Things (IoT). As CPS systems increasingly integrate computational capabilities with physical processes, the need for robust, transparent, and decentralized data management becomes essential. DLTs, particularly blockchain, provide a solution by ensuring data integrity and enabling secure peer-to-peer interactions, making it ideal for supporting the trust and information visibility requirements of CPS environments.
In this context, this dissertation presents a semantic-based framework for integrating DLTs into CPSs, leveraging the Semantic Web of Things (SWoT) to enhance decision-making, resource management, and automated reasoning within decentralized systems. The proposed architecture addresses key challenges in scalability, security, and interoperability by combining DLTs with semantic technologies to enable resource-constrained devices to perform complex reasoning tasks locally while preserving data integrity and trust across the system.
The framework’s primary contributions include: (1) a knowledge representation layer that supports advanced resource discovery and service selection through automated reasoning; (2) a federated learning model that enables secure, decentralized model training across edge and IoT devices, preserving data privacy and optimizing network efficiency; and (3) a semantic-enhanced blockchain mechanism that utilizes smart contracts and semantic matchmaking to dynamically manage and prioritize resources across the continuum. Extensive experimental validation, including a case study on green mobility for electric vehicles, demonstrates the framework’s applicability to real-world CPS scenarios, showcasing improvements in data handling, scalability, and resource utilization
GLOBAL FASHION. Spazi, linguaggi e comunicazione della moda senza luogo
No full textLa grammatica dello spazio è in vari sensi pervasiva all'interno del codice vestimentario e del lessico della moda. Con la globalizzazione e la deterritorializzazione dei saperi, però, diventa sempre più difficile accedere alle informazioni simbolico-culturali attraverso le mappe linguistiche. Il processo di anglicizzazione dela mondo della moda non è che un aspetto di tale fenomeno che cartterizza quella che viene chiamata qui per l'appunto "globalfashion
Intrusion Tolerance as a Service: A SLA-Based Solution
No full textAmong the incredible number of challenges in Cloud Computing two of them are considered of great relevance: Service Level Agreement management and Security management. In this paper we will try to show how it is possible, using a cloud-oriented API derived from the mOSAIC project, to build up an SLA-oriented cloud application which enables the delivery of security solutions as a service. We will focus on intrusion tolerance solutions, i.e., systems which grant that a system maintain a (limited) availability even when a security attack take place
Intrusion Tolerant Approach for Denial of Service Attacks to Web Services
No full textIntrusion Detection Systems are the major technology used for protecting information systems. However, they do not directly detect intrusion, but they only monitor the attack symptoms. Therefore, no assumption can be made on the outcome of the attack, no assurance can be assumed once the system is compromised. The intrusion tolerance techniques focus on providing minimal level of services, even when the system has been partially compromised. This paper presents an intrusion tolerant approach for Denial of Service attacks to Web Services. It focuses on the detection of attack symptoms as well as the diagnosis of intrusion effects in order to perform a proper reaction only if the attack succeeds. In particular, this work focuses on a specific Denial of Service attack, called Deeply-Nested XML. Preliminary experimental results show that the proposed approach results in a better performance of the Intrusion Detection Systems, in terms of increasing diagnosis capacity as well as reducing the service unavailability during an intrusion
A (in)Secure-by-Design IoT Protocol: The ESP Touch Protocol and a Case Study Analysis from the Real Market
No full textThe number of IoT devices designed and marketed in these last years is continuously growing. These smart things are more often managed through the cloud, therefore more and more devices are connected both to the customer's local networks and to the Internet. Among the several network pairing mechanisms designed for the IoT domain, we examined the Smart Config family of protocols, a clever technology that allows an IoT device to be associated with an existing WiFi network by receiving special packets from an already network-paired smartphone. We investigate the threats and the technical details behind the ESP Touch protocol, a Smart Config implementation developed by Espressif Systems for its ESP32/8266 family of chips. Additionally, we present a security analysis of the same protocol implemented by the ITEAD Sonoff smart switches (and also by many other ESP-based devices), that we conducted by reverse-engineering the eWeLink mobile companion application. In conclusion, we describe a vulnerability (published as CVE-2020-12702) we found in the Quick Pairing mode of the eWeLink SDK that leads to a full WiFi credential disclosure during the device pairing process
Design and Development of a Technique for the Automation of the Risk Analysis Process in IT Security
No full textCloud service architectures are very heterogeneous and commonly relies on components managed by third parties. As a consequence, the security verification process of these architectures is a complex and costly process. Moreover, development of application that runs in cloud should take into account the agile software design and development methodologies and a really short time-to market, which are often incompatible with deep security testing. This article aims at addressing such issues proposing a technique, compatible with Security-By-Design methodologies, that automates the threat modeling and risk evaluation of a system, reducing the costs and requiring a limited set of security skills. Through the proposed approach, the software system is analysed identifying the threats that affects the system technical assets, ranking the level of risk associated to each threat and suggesting a set of countermeasures in standard terms; the process requires a minimal user interaction. The proposed technique, was implemented through a dedicated tool and, correctly integrated in development processes, can significantly reduce the need of costly security experts and shorten the time needed to execute a full system security assessment. In order to validate the technique, we compared our results with approaches available in literature and existing tools
- …
