WP1.2

Security by Construction in Cloud and Internet of Things Ecosystems

The work carried out in this WP addresses security by design in Cloud and Internet of Things ecosystems, including research activities on ways to establish the assurance of security in software systems by design, focusing mainly on software and development processes (security engineering). It also includes the prototyping of a set of software tools for security engineering, attack modelling, and semi-assisted testing.

Team & Collaborators

  • Pedro Inácio | WP leader
  • Mário Freire
  • Paula Prata
  • Francisco Chimuco | Grantee, C4-UBI
  • Tiago Simões | PostDoc, UBI
  • Bernardo Sequeiros | PhD student, UBI
  • Musa Gwani Samaila | PhD student, UBI
  • Carolina Lopes | MSc student, UBI
  • Joana Costa | MSc student, UBI
  • Luís Rodrigues | MSc student, UBI (09/2019-10/2020)

Publications

Journal articles

(***) Articles published in a top 10% most cited journal of the respective field.

conference papers

  • Carolina Lopes, Joana C. Costa, João B. F. Sequeiros, Tiago M. C. Simões, Mário M. Freire, and Pedro R. M. Inácio (2021). Machine Learning Applied to Security Requirements Elicitation: Learning From Experience, in Atas do 12º Simpósio de Informática (INForum 2021), pp. 0-12 (in press).
  • Musa G. Samaila, Carolina Lopes, Édi Aires, João B. F. Sequeiros, Tiago Simões, Mário M. Freire, and Pedro R. M. Inácio (2020). A Preliminary Evaluation of the SRE and SBPG Components of the IoT-HarPSecA Framework., Proceedings of The Global IoT Summit (GIoTS2020), pp. 1-7.

Related publications

Related activities

  • Pedro Inácio co-chaired the 5th International Workshop on Security and Forensics of IoT (IoT-SECFOR 2021), held in conjunction with the 16th International Conference on Availability, Reliability and Security (ARES 2021), all digital conference, 17 to 20 August 2021.
  • Pedro Inácio co-chaired the 4th International Workshop on Security and Forensics of IoT (IoT-SECFOR 2020), held in conjunction with the 15th International Conference on Availability, Reliability and Security (ARES 2020), all digital conference, 25 to 28 August 2020.
  • Bernardo Sequeiros, SECURIoTESIGN – Towards the Assurance of Security by Design of the Internet of Things. C4 – RINNOVAR – Research and INNOVation seminAR, October 23, 2019, Covilhã, Portugal.
  • Pedro Inácio co-chaired the 3rd International Workshop on Security and Forensics of IoT (IoT-SECFOR 2019), held in conjunction with the 14th International Conference on Availability, Reliability and Security (ARES 2019), Canterbury, United Kingdom, 26 to 29 August 2019.
  • Carolina Lopes, MSc student at UBI, is currently developing her Master’s dissertation, “Semi-Automatic Generation of Tests for Assessing Correct Integration of Security Mechanisms in the Internet of Things”, also in the scope of the theme of this project.
  • Joana Costa, MSc student at UBI, is currently developing her Master’s dissertation, “Threat Modeling Solution for Internet of Things in a Web-based Security Framework”, also in the scope of the theme of this project.
  • Luís Rodrigues, MSc student at UBI, is currently developing his Master’s dissertation, “Modeling Attacks in IoT to Assist the Engineering Process”, also in the scope of the theme of this project.
  • Bernardo Sequeiros, one of the collaborators, is developing, as an integrating part of the SECURIoTESIGN project, his PhD thesis, under the guise “Towards a Framework for System and Attack Modeling, and Mapping of Requirements and Technology for the Internet of Things”
  • Project SECURIoTESIGN, Towards the assurance of SECURity by dESIGN of the Internet of Things, financed by FCT/COMPETE/FEDER (Reference POCI-01-0145-FEDER-030657), with the main purpose of providing means to ensure that security is integrated in all design and development stages of IoT devices, from concept to testing phases. This project will provide a (prototype) tool framework to identify security requirements, model attacks and the system, specify tests, map requirements and technology, generate documentation, and auditing.

error: Content is protected !!