Keynote
Cobbles and Potholes – On the Bumpy Road to Secure Software Supply Chains
Open source software is ubiquitous – all across the stack, in the cloud and on-premise,
on all devices, in commercial and non-commercial offerings. This success, the dependency
of the software industry on open source, combined with recent data breaches and attacks,
puts security into the spotlight. This talk will provide an overview - for sure opinionated,
hopefully controversial – about the state of affairs and current trends regarding the security
of software supply chains, both from consumer and producer perspective. | Henrik Plate, SAP | Session video for session Cobbles and Potholes – On the Bumpy Road to Secure Software Supply Chains | Session slides for session Cobbles and Potholes – On the Bumpy Road to Secure Software Supply Chains |
Session
Risk Assessment in IoT Case Study: Collaborative Robots System
Authors: - Salim Chehida, Université Grenoble Alpes
- Abdelhakim Baouya, Université Grenoble Alpes
- Miquel Cantero, Robotnik Automation S.L.L
- Paul-Emmanuel Brun, Airbus Defence & Space
- Guillemette Massot, Airbus Defence & Space
Paper: CEUR linkAbstract: Security is one of the crucial challenges in the design and development of IoT applications.
This paper presents an approach that focuses on existing security standards to evaluate and
analyse the potential risks faced by IoT systems. It begins by identifying system assets and
their associated vulnerabilities and threats. A list of security objectives and technical
requirements are then defined to mitigate the risks and build a secure and safe system.
We use our approach to assess risks in the robotic system for supporting the movement of loads
in a warehouse. | Salim Chehida | Session video for session Risk Assessment in IoT Case Study: Collaborative Robots System | Session slides for session Risk Assessment in IoT Case Study: Collaborative Robots System |
Session
Integrated Solution for Industrial IoT Data Security - the CHARIOT Solution
Authors: - Konstantinos Loupos, INLECOM Innovation
- Alexandros Papageorgiou, INLECOM Innovation
- Thomas Krousarlis, INLECOM Innovation
- Antonis Mygiakis, INLECOM Innovation
- Konstantinos Zavitsas, EBOS Technologies Ltd
- Vasos Hadjioannou, eBOS Technologies Ltd
- Sofiane Zemouri, IBM
- Magdalena Kacmajor, IBM Ireland
- Andrea Battaglia, Aspisec Srl
- Andrea Chiappetta, Aspisec Srl
- George Theofilis, CLMS Hellas
- Harris Avgoustidis, Telcoserv
- Vassilis Kalompatsos, Telcoserv
- Basile Starynkevitch, CEA
- Franck Vedrine, CEA
Paper: CEUR linkAbstract: The CHARIOT H2020 (IoT) project (Cognitive Heterogeneous Architecture for Industrial IoT),
integrates a state-of-the-art inclusive solution for the security, safety and privacy
assurance of data in industrial networks. The solution is based on an integrated approach
for IoT devices lifecycle management (based on blockchain and public key infrastructure
technologies), IoT firmware development and deployment (source and binary level vulnerability
analyses), data analytics (privacy by design, sensitive data detection, dynamic network
configurations etc.) and a set of user interfaces for management and control of the network,
devices and the CHARIOT platform. CHARIOT is funded by the H2020 programme under the IoT topic,
has a 3-year duration and concludes its activities by the end of 2020. | Konstantinos Loupos | Session video for session Integrated Solution for Industrial IoT Data Security - the CHARIOT Solution | Session slides for session Integrated Solution for Industrial IoT Data Security - the CHARIOT Solution |
Session
Guidelines for Privacy and Security in IoT
Authors: - Pasquale Annicchino, Archimede Solutions
- Simone Seminara, Istituto Italiano per la Privacy e la Valorizzazione dei Dati
- Francesco Capparelli, Istituto Italiano per la Privacy e la Valorizzazione dei Dati
Paper: CEUR linkAbstract: Norms and standards define the ecosystem in which IoT solutions are developed and deployed.
It is often difficult for people without a legal training or an understanding of standardization
dynamics to fully grasp the state of the art in this very relevant field. This contribution aims
at highlighting the most relevant tools available and explain their relevance. | Simone Seminara | | |
Session
DINASORE: A Dynamic Intelligent Reconfiguration Tool for Cyber-Physical Production Systems
Authors: - Eliseu Moura Pereira, University of Porto
- João Pedro Correia dos Reis, University of Porto
- Gil Goncalves, University of Porto
Paper: CEUR linkAbstract: The nowadays industrial digital revolution demands for software driven solutions where
reconfiguration is one of the key enablers to achieve smart manufacturing by easy deployment and code
reuse. Despite existing several tools and platforms that allow for software reconfiguration at the digital
twin / edge level, it is most of the times difficult to make use of state of the art algorithms developed
in the most popular programming languages due to software incompatibility. This paper presents a novel
framework named Dynamic INtelligent Architecture for Software MOdular REconfiguration (DINASORE) that
implements the industrial standard IEC 61499 based in Function Blocks (FB) in Python language for
Cyber-Physical Production Systems' implementation. It adopts the 4DIAC-IDE as graphical user interface (GUI)
to ease the design and deployment of FBs to quickly and on-demand reconfigure target equipment. The proposed
framework provides data integration to third party platforms through the use of OPC-UA. The test scenarios
demonstrate that the proposed framework 1) is flexible and reliable for different applications and 2) linear
increases the CPU and memory workload for a large amount of FBs. | Eliseu Moura Pereira | Session video for session DINASORE: A Dynamic Intelligent Reconfiguration Tool for Cyber-Physical Production Systems | Session slides for session DINASORE: A Dynamic Intelligent Reconfiguration Tool for Cyber-Physical Production Systems |
Session
Bringing Clouds down to Earth: Modeling Arrowhead Deployments via Eclipse Vorto
Authors: - Sven Erik Jeroschewski, Bosch IO
- Géza Kulscár, IncQuery Labs
- Kevin Olotu, Bosch IO
- Johannes Kristan, Bosch IO
Paper: CEUR linkAbstract: The design and development of interconnected industrial production facilities, which integrate aspects
of theInternet of Things (IoT) or, more specifically, the IndustrialIoT (IIoT) often deals with complex scenarios
involving dynamicSystem of Systems (SoS), resulting in large development anddeployment efforts. The Arrowhead
community aims at deliv-ering mechanisms and technologies to cope with such complexscenarios. In particular, the
concepts of local clouds providing aservice-oriented architecture (SOA) framework for IIoT. Here,a central
challenge is the conceptual modeling of such use-cases. SysML is widely established as a standardized modeling
language and framework for large-scale systems engineeringand, thus, for Arrowhead local cloud designs. However,
SysMLand its Arrowhead profile lacks a canonical way to supportactual platform modeling and device involvement
in heavilydistributed IIoT scenarios. The Eclipse Vorto project is ideal forfilling this gap: it provides a
modeling language for IoT devicesand comes with a set of modeling tools and already existingreusable templates
of device models. In this paper, we proposean approach to integrating Eclipse Vorto models into ArrowheadSysML
models. We illustrate the concept with a realistic, yetcomprehensible industrial scenario and also present a
prototypeto emphasize the benefits of our novel integration platform. | Géza Kulcsár and Kevin Olotu | Session video for session Bringing Clouds down to Earth: Modeling Arrowhead Deployments via Eclipse Vorto | Session slides for session Bringing Clouds down to Earth: Modeling Arrowhead Deployments via Eclipse Vorto |
Session
Model Based Methodology and Framework for Design and Management of Next-Gen IoT Systems
Authors: - Xu Tao, LINKS Foundation
- Davide Conzon, LINKS Foundation
- Enrico Ferrera, LINKS Foundation
- Shuai Li, LINKS Foundation
- Juergen Goetz, Siemens
- Laurent Maillet-Contoz, STMicroelectronics
- Emmanuel Michel, STMicroelectronics
- Mario Diaz Nava, STMicroelectronics
- Abdelhakim Baouya, University of Grenoble-Alpes
- Salim Chehida, University of Grenoble-Alpes
Paper: CEUR linkAbstract: Internet of Things (IoT) is a pervasive technology covering many applications areas (Smart Mobility,
Smart Industry, Smart Healthcare, Smart Building, etc.). Its success and the technology evolution allow targeting
more complex and critical applications such as the management of critical infrastructures and cooperative service
robotics, which requires real time operation and a higher level of intelligence in the monitoring-control command
for decision-making. Furthermore, these applications type need to be fully validated in advance considering that bugs
discovered during real operation could cause significant damages. In order to avoid these drawbacks, IoT developers
and system integrators need advanced tools and methodologies. This paper presents a methodology and a set of tools,
defined and developed in the context of the BRAIN-IoT European Union (EU) project. The overall framework includes both
Open semantic models to enforce interoperable operations and exchange of data and control features; and Model-based
development tools to implement Digital Twin solutions to facilitate the prototyping and integration of interoperable
and reliable IoT system solutions. After describing the solution developed, this paper also presents concrete use cases
based on the two critical systems mentioned above, leveraging the application scenarios used to validate the concepts
developed and results obtained by the BRAIN-IoT project. | Xu Tao | Session video for session Model Based Methodology and Framework for Design and Management of Next-Gen IoT Systems | Session slides for session Model Based Methodology and Framework for Design and Management of Next-Gen IoT Systems |