Smart cities deploy large numbers of sensors and collect a tremendous amount of data from them. For example, Advanced Metering Infrastructures (AMIs), which consist of physical meters that collect usage data about public utilities such as power and water, are an important building block in a smart city. In a typical sensor network, the measurement devices are connected through a computer network, which exposes them to cyber attacks. Furthermore, the data is centrally managed at the operator's servers, making it vulnerable to insider threats. Our goal is to protect the integrity of data collected by large-scale sensor networks and the firmware in measurement devices from cyber attacks and insider threats. To this end, we first develop a comprehensive threat model for attacks against data and firmware integrity, which can target any of the stakeholders in the operation of the sensor network. Next, we use our threat model to analyze existing defense mechanisms, including signature checks, remote firmware attestation, anomaly detection, and blockchain-based secure logs. However, the large size of the Trusted Computing Base and a lack of scalability limit the applicability of these existing mechanisms. We propose the Feather-Light Blockchain Infrastructure (FLBI) framework to address these limitations. Our framework leverages a two-layer architecture and cryptographic threshold signature chains to support large networks of low-capacity devices such as meters and data aggregators. We have fully implemented the FLBI's end-to-end functionality on the Hyperledger Fabric and private Ethereum blockchain platforms. Our experiments show that the FLBI is able to support millions of end devices.
翻译:智能城市部署大量传感器,并从中收集大量数据。例如,高级计量基础设施(AMI)由物理仪表组成,收集水电等公共事业的数据,是智能城市的一个重要建筑块。在一个典型的传感器网络中,测量装置通过计算机网络连接,使其暴露于网络攻击中。此外,数据在操作者服务器上集中管理,使其易受内部威胁。我们的目标是保护大型传感器网络和测量装置中固态软件收集的数据的完整性,不受网络攻击和内部威胁。为此,我们首先开发一个针对数据和固态完整性攻击的全面威胁模型,该模型可以针对传感器网络运作中的任何利益攸关方。接下来,我们使用我们的威胁模型分析现有的防御机制,包括签名检查、远程固态验证、异常检测和基于链锁的安全日志。然而,信任电子计算基地的庞大规模以及测量装置的易缩缩缩能力限制了这些现有机制的可应用性。我们提议,Fether-L级系统对数据和固态完整性进行全面威胁,作为高端链路路端的电路端系统框架。我们提议,将Frlical-L级服务器的低端服务器和低端链路段框架框架用于这些系统。