- -

Improving Security of Web Servers in Critical IoT Systems through Self-Monitoring of Vulnerabilities

RiuNet: Repositorio Institucional de la Universidad Politécnica de Valencia

Compartir/Enviar a

Citas

Estadísticas

  • Estadisticas de Uso

Improving Security of Web Servers in Critical IoT Systems through Self-Monitoring of Vulnerabilities

Mostrar el registro sencillo del ítem

Ficheros en el ítem

dc.contributor.author Song, Linxuan es_ES
dc.contributor.author Garcia-Valls, Marisol es_ES
dc.date.accessioned 2023-10-25T18:02:21Z
dc.date.available 2023-10-25T18:02:21Z
dc.date.issued 2022-07 es_ES
dc.identifier.uri http://hdl.handle.net/10251/198807
dc.description.abstract [EN] IoT (Internet of Things) systems are complex ones that may comprise large numbers of sensing and actuating devices; and servers that store data and further configure the operation of such devices. Usually, these systems involve real-time operation as they are closely bound to particular physical processes. This real-time operation is often threatened by the security solutions that are put in place to alleviate the ever growing attack surface in IoT. This paper focuses on critical IoT domains where less attention has been paid to the web security aspects. The main reason is that, up to quite recently, web technologies have been considered unreliable and had to be avoided by design in critical systems. In this work, we focus on the server side and on how attacks propagate from server to client as vulnerabilities and from client to unprotected servers; we describe the concerns and vulnerabilities introduced by the intensive usage of web interfaces in IoT from the server templating engines perspective. In this context, we propose an approach to perform self monitoring on the server side, propagating the self monitoring to the IoT system devices; the aim is to provide rapid detection of security vulnerabilities with a low overhead that is transparent to the server normal operation. This approach improves the control over the vulnerability detection. We show a set of experiments that validate the feasibility of our approach. es_ES
dc.description.sponsorship This research was funded by project "Design of services for resilient and real-time execution of social dispersed computing applications in cyber-physical domains", Grant No. AICO/2021/138 funded by Generalitat Valenciana (Conselleria de Innovacion, Universidades, Ciencia y Sociedad Digital), Spain. The APC was funded by AICO/2021/138 (Subvenciones para grupos de investigacion consolidados). es_ES
dc.language Inglés es_ES
dc.publisher MDPI AG es_ES
dc.relation.ispartof Sensors es_ES
dc.rights Reconocimiento (by) es_ES
dc.subject Security es_ES
dc.subject Web technology es_ES
dc.subject Web servers es_ES
dc.subject Web programming es_ES
dc.subject Vulnerability detection es_ES
dc.subject Self monitoring es_ES
dc.subject IoT es_ES
dc.subject IIoT es_ES
dc.subject Cyber Physical Sytems es_ES
dc.subject Critical systems es_ES
dc.subject.classification INGENIERÍA TELEMÁTICA es_ES
dc.title Improving Security of Web Servers in Critical IoT Systems through Self-Monitoring of Vulnerabilities es_ES
dc.type Artículo es_ES
dc.identifier.doi 10.3390/s22135004 es_ES
dc.relation.projectID info:eu-repo/grantAgreement/GENERALITAT VALENCIANA//AICO%2F2021%2F138//Diseño de servicios para la ejecución confiable y de tiempo real de aplicaciones de computación social dispersa en entornos ciberfísicos/ es_ES
dc.rights.accessRights Abierto es_ES
dc.contributor.affiliation Universitat Politècnica de València. Escuela Técnica Superior de Ingenieros de Telecomunicación - Escola Tècnica Superior d'Enginyers de Telecomunicació es_ES
dc.description.bibliographicCitation Song, L.; Garcia-Valls, M. (2022). Improving Security of Web Servers in Critical IoT Systems through Self-Monitoring of Vulnerabilities. Sensors. 22(13):1-17. https://doi.org/10.3390/s22135004 es_ES
dc.description.accrualMethod S es_ES
dc.relation.publisherversion https://doi.org/10.3390/s22135004 es_ES
dc.description.upvformatpinicio 1 es_ES
dc.description.upvformatpfin 17 es_ES
dc.type.version info:eu-repo/semantics/publishedVersion es_ES
dc.description.volume 22 es_ES
dc.description.issue 13 es_ES
dc.identifier.eissn 1424-8220 es_ES
dc.identifier.pmid 35808499 es_ES
dc.identifier.pmcid PMC9269696 es_ES
dc.relation.pasarela S\474072 es_ES
dc.contributor.funder GENERALITAT VALENCIANA es_ES
dc.subject.ods 09.- Desarrollar infraestructuras resilientes, promover la industrialización inclusiva y sostenible, y fomentar la innovación es_ES
upv.costeAPC 2122,74 es_ES


Este ítem aparece en la(s) siguiente(s) colección(ones)

Mostrar el registro sencillo del ítem