Beruflich Dokumente
Kultur Dokumente
Abstract— Before a wider adoption of the Internet of Things Regarding communication and networking features,
(IoT) vision occurs, many urgent technological and social middleware solutions mostly deal with the goal of supporting
challenging issues still need to be addressed, including device seamless communication among devices, based on various and
interoperability, systems autonomy, privacy and security often unreliable communication channels (with intermittent
concerns, which could have a significant impact on several connectivity due to mobility or interference). From the
aspects of everyday-life or potential end-user. Due to the very transport point of view, middleware solutions need to cope with
large number of technologies normally in place within the IoT non-traditional communication models and opportunistic
paradigm, some type of middleware layer is employed to enforce techniques to provide services like data time-stamping, data
seamless integration of devices and data within the same
sorting, caching or flow-oriented information management.
information network. Within such middleware, data must be
Middleware solutions satisfy the need for interoperability,
exchanged respecting strict protection constraints. Both the
networking and security issues have driven the design and the
providing unified data models and enabling resource sharing
development of the VIRTUS Middleware, an IoT middleware between data providers and consumers. This is normally
relying on the open XMPP protocol to provide secure event- achieved through open interfaces and protocols, usually with
driven communications within an IoT scenario. Leveraging the links to technology-neutral standards such as XML or web
standard security features provided by XMPP, the middleware services. This issue also involves the need to support a variety
offers a reliable and secure communication channel for of programming languages, running on different hardware.
distributed applications, protected with both authentication Communication support and enhanced interoperability are
(through TLS protocol) and encryption (SASL protocol) normally exploited to support both data-oriented and service-
mechanisms. The proposed architecture provides the possibility oriented communication paradigms, which can be both used to
to isolate an instance of VIRTUS, allowing the exchange of data support context management and more advanced features in the
only within a private network. This paper presents an overview area of artificial intelligence (e.g.: context reasoning, pattern
of VIRTUS, providing an overall platform description and details recognition, planning, semantic mapping or discovery). Among
regarding its security features. the horizontal issues assurance of trust among devices and
infrastructures and proper access control to resources must be
Keywords-component;Internet of Things, VIRTUS Middleware, provided. Contextually, as indicated by Fabian, B. et al. [3],
XMPP, OSGi, Security, TLS(SASL). data-sensitive operations must be handled in a privacy-savvy
manner.
I. INTRODUCTION
In order to address some of the aforementioned challenges,
Current research roadmaps ([1], [2]) define the IoT as a this paper discusses both the VIRTUS architecture (as an
physical and logical extension of the current internet, populated event-driven middleware leveraging on existing open standard
by billions of intelligent networked devices or “things”. Within such as XMPP [4] and OSGi [5]) and its security aspects. The
this vision, devices will cooperate through open standards security in IoT is essential, indeed, as analyzed by Atzori et al.
providing ubiquitous and pervasive services, useful in many [6] there is general reluctance to adopt the IoT paradigm as
application scenarios such as electronic payments, monitoring, long as there are reliability risks that could represent serious
industrial applications, e-health solutions, and many more. threats to security and privacy of data. In order to tackle this
Due to the heterogeneity of existing networked devices in double problem, the section II introduces main security issues
terms of communication protocols and hardware features, as in IoT and, for the completeness of the whole discussion, it
well as computational models and exposed services, the IoT briefly treats the main privacy issues. Section III introduces the
concept is commonly associated with the idea of an VIRTUS architecture, while section IV describes details about
intermediate middleware layer handling miscellaneous data. the VIRTUS security approach. The last two sections provide a
The term “middleware” is mostly tied to integration tasks and practical sample application and draw conclusions.
covers a broad spectrum of roles, including networking and
communication, authentication, encryption, interoperability, A. Security & Privacy
data processing, service support, context management as well IoT applications are vulnerable to security attacks for
as horizontal issues (like security and privacy management) several reasons: first, devices are physically vulnerable and are
[1]. often left unattended; second, is difficult to implement any
This article is part of the work carried out within the regional project
“Piattaforma Tecnologica Innovativa per l’Internet of Things”, co-funded by
the Regione Piemonte (2009-2012).