A security event description of intelligent applications in edge-cloud environment

Qianmu Li; Xiaochun Yin; Shunmei Meng; Yaozong Liu; Zijian Ying

doi:10.1186/s13677-020-00171-0

Journal of Cloud Computing: Advances, Systems and Applications (May 2020)

A security event description of intelligent applications in edge-cloud environment

Qianmu Li,
Xiaochun Yin,
Shunmei Meng,
Yaozong Liu,
Zijian Ying

Affiliations

Qianmu Li: School of Cyber Science and Engineering, Nanjing University of Science and Technology
Xiaochun Yin: Facility Horticulture Laboratory of Universities in Shandong, WeiFang University of Science & Technology
Shunmei Meng: School of Cyber Science and Engineering, Nanjing University of Science and Technology
Yaozong Liu: Intelligent Manufacturing Department, Wuyi University
Zijian Ying: School of Cyber Science and Engineering, Nanjing University of Science and Technology

DOI: https://doi.org/10.1186/s13677-020-00171-0
Journal volume & issue: Vol. 9, no. 1
pp. 1 – 13

Abstract

Read online

Abstract In traditional network environment, the attack topology of the network is usually obtained based on a graph traversal algorithm. It uses connection relationships to describe the process of the attack, thus completing the description of network security event. However, in the edge-cloud environment, the control logic and data forwarding of network devices are separated from each other. The control layer is responsible for the centralized management of network edge nodes. After acquiring the entire network topology, it can automatically generate a visualized network structure. This architecture extends traditional cloud computing architecture to the edge of the network, helping to handle some latency-sensitive service requirements, especially for most IoT applications. Therefore, security analysts can grasp the connection status of the devices on the entire network in the control domain. This network topology generation method based on the control layer information is directly and efficiently, which can greatly simplify the description of security events in the edge-cloud environment. At the same time, the separate structure also hides specific details of the underlying network device. Petri-net, as a formal description tool, can be used to describe such structure. Among existing security event description methods, the CORAS modeling tool has the advantages of graphical description, reusability and refinement description. And it also provides analysis guides to guide the operation steps. Based on the edge-cloud environment, this paper combines the advantages of CORAS modeling and analysis with Object-oriented Petri-net theory, and proposes a COP (CORAS-based Object-oriented Petri-net)-based Intelligent Applications security event description method. Experiments verify that this method is suitable for describing the complexity and dynamics of security events in edge cloud environment.

Published in Journal of Cloud Computing: Advances, Systems and Applications

ISSN: 2192-113X (Online)
Publisher: SpringerOpen
Country of publisher: United Kingdom
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics: Computer engineering. Computer hardware; Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://journalofcloudcomputing.springeropen.com

About the journal

Abstract

Keywords