Back to Search
Start Over
Federated Blockchain-Based Tracking and Liability Attribution Framework for Employees and Cyber-Physical Objects in a Smart Workplace
- Source :
- ICGS3
- Publication Year :
- 2019
- Publisher :
- IEEE, 2019.
-
Abstract
- The systematic integration of the Internet of Things (IoT) and Cyber-Physical Systems (CPS) into the supply chain to increase operational efficiency and quality has also introduced new complexities to the threat landscape. The myriad of sensors could increase data collection capabilities for businesses to facilitate process automation aided by Artificial Intelligence (AI) but without adopting an appropriate Security-by-Design framework, threat detection and response are destined to fail. The emerging concept of Smart Workplace incorporates many CPS (e.g. Robots and Drones) to execute tasks alongside Employees both of which can be exploited as Insider Threats. We introduce and discuss forensic-readiness, liability attribution and the ability to track moving Smart SPS Objects to support modern Digital Forensics and Incident Response (DFIR) within a defence-in-depth strategy. We present a framework to facilitate the tracking of object behaviour within Smart Controlled Business Environments (SCBE) to support resilience by enabling proactive insider threat detection. Several components of the framework were piloted in a company to discuss a real-life case study and demonstrate anomaly detection and the emerging of behavioural patterns according to objects' movement with relation to their job role, workspace position and nearest entry or exit. The empirical data was collected from a Bluetooth-based Proximity Monitoring Solution. Furthermore, a key strength of the framework is a federated Blockchain (BC) model to achieve forensic-readiness by establishing a digital Chain-of-Custody (CoC) and a collaborative environment for CPS to qualify as Digital Witnesses (DW) to support post-incident investigations.
- Subjects :
- 021110 strategic, defence & security studies
Computer science
business.industry
Digital forensics
0211 other engineering and technologies
Cyber-physical system
Insider threat
020206 networking & telecommunications
02 engineering and technology
Computer security
computer.software_genre
Process automation system
Non-repudiation
Smart city
0202 electrical engineering, electronic engineering, information engineering
Resilience (network)
business
computer
Building automation
Subjects
Details
- Database :
- OpenAIRE
- Journal :
- 2019 IEEE 12th International Conference on Global Security, Safety and Sustainability (ICGS3)
- Accession number :
- edsair.doi...........1b7ce860589151bbf2dbc8d90a85f006
- Full Text :
- https://doi.org/10.1109/icgs3.2019.8688297