A software-defined blockchain-based architecture for scalable and tamper-resistant IoT-enabled smart cities
The increasing reliance on smart city operations has motivated the need for trusted Internet of Things (IoT) transactions due to the transformation of IoT devices from smart sensing to being active participants that share their data with fog/edge computing services. Existing security models such as centralized cloud-hosted security infrastructures cannot address IoT's security and privacy concerns because of the lack of resources and flexibility, which makes IoT devices susceptible to elevation of privileges, and distributed denial-of-service (DDoS). An attractive and more realistic alternative to address these challenges is the blockchain, which uses a decentralized infrastructure for fighting DDoS attacks and eliminate the risk of a single point of failure. Blockchain serves as the backbone for diverse IoT applications, such as transactive energy auctions, self-driving cars, and trusted health-care systems. Additionally, software-defined networking (SDN) allows the development of customized security policies and services in a dynamic, software-based fashion. Complementing SDN, network function virtualization (NFV) enables scaling IoT capabilities by allowing on-demand service orchestration and management. By combining blockchain and SDN/NFV, we can optimize the flow management in response to attacks by enabling sophisticated analysis of IoT transactions and improving security and privacy based on global network awareness given by centralized SDN controllers. To that end, in this chapter, we introduce an SDN architecture for enforcing security of IoT transaction in the blockchain. We also introduce a novel proof-of-authority (PoA) consensus algorithm to report suspected IoT smart devices and report them under smart contract. We then introduce a distributed intrusion detection system as a manifestation of virtualized network functions (VNFs) in the fog computing environment, i.e., a firewall-as-a-service in SDN network, which takes care of malicious flows and enables DDoS detection and mitigation on-demand.
A software-defined blockchain-based architecture for scalable and tamper-resistant IoT-enabled smart cities, Page 1 of 2
< Previous page Next page > /docserver/preview/fulltext/books/te/pbte090e/PBTE090E_ch12-1.gif /docserver/preview/fulltext/books/te/pbte090e/PBTE090E_ch12-2.gif