# Secure Cloud-Edge Deployments, with Trust

**Authors:** Stefano Forti, Gian-Luigi Ferrari, Antonio Brogi

arXiv: 1901.05347 · 2019-09-06

## TL;DR

This paper introduces a methodology for assessing IoT application security in heterogeneous Cloud-Edge environments, considering trust relations among stakeholders, with an explainable and automated evaluation process.

## Contribution

It presents a novel declarative approach to express security requirements and capabilities, incorporating trust relations for automated security assessment of Cloud-Edge deployments.

## Key findings

- Effective security assessment of IoT deployments
- Incorporates trust relations among stakeholders
- Provides explainable security level evaluations

## Abstract

Assessing the security level of IoT applications to be deployed to heterogeneous Cloud-Edge infrastructures operated by different providers is a non-trivial task. In this article, we present a methodology that permits to express security requirements for IoT applications, as well as infrastructure security capabilities, in a simple and declarative manner, and to automatically obtain an explainable assessment of the security level of the possible application deployments. The methodology also considers the impact of trust relations among different stakeholders using or managing Cloud-Edge infrastructures. A lifelike example is used to showcase the prototyped implementation of the methodology.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1901.05347/full.md

## Figures

18 figures with captions in the complete paper: https://tomesphere.com/paper/1901.05347/full.md

## References

70 references — full list in the complete paper: https://tomesphere.com/paper/1901.05347/full.md

---
Source: https://tomesphere.com/paper/1901.05347