TY - JOUR
T1 - BlockSIEM: Protecting smart city services through a blockchain-based and distributed SIEM
AU - Botello, Juan Velandia
AU - Mesa, Andrés Pardo
AU - Rodríguez, Fabián Ardila
AU - Díaz-López, Daniel
AU - Nespoli, Pantaleone
AU - Gómez Mármol, Félix
N1 - Funding Information:
Funding: This research was partially funded by the Escuela Colombiana de Ingeniería Julio Garavito (Colombia), by the Universidad del Rosario (Colombia), by an FPU predoctoral contract granted by the University of Murcia (Spain), as well as by a Ramón y Cajal research contract (RYC-2015-18210) granted by the MINECO (Spain) and co-funded by the European Social Fund.
Publisher Copyright:
© 2020 by the authors. Licensee MDPI, Basel, Switzerland.
PY - 2020/8/18
Y1 - 2020/8/18
N2 - The Internet of Things (IoT) paradigm has revolutionized several industries (e.g., manufacturing, health, transport, education, among others) by allowing objects to connect to the Internet and, thus, enabling a variety of novel applications. In this sense, IoT devices have become an essential component of smart cities, allowing many novel and useful services, but, at the same time, bringing numerous cybersecurity threats. The paper at hand proposes BlockSIEM, a blockchain-based and distributed Security Information and Event Management (SIEM) solution framework for the protection of the aforementioned smart city services. The proposed SIEM relies on blockchain technology to securely store and access security events. Such security events are generated by IoT sentinels that are in charge of shielding groups of IoT devices. The IoT sentinels may be deployed in smart city scenarios, such as smart hospitals, smart transport systems, smart airports, among others, ensuring a satisfactory level of protection. The blockchain guarantees the non-repudiation and traceability of the registry of security events due to its features. To demonstrate the feasibility of the proposed approach, our proposal is implemented using Ethereum and validated through different use cases and experiments.
AB - The Internet of Things (IoT) paradigm has revolutionized several industries (e.g., manufacturing, health, transport, education, among others) by allowing objects to connect to the Internet and, thus, enabling a variety of novel applications. In this sense, IoT devices have become an essential component of smart cities, allowing many novel and useful services, but, at the same time, bringing numerous cybersecurity threats. The paper at hand proposes BlockSIEM, a blockchain-based and distributed Security Information and Event Management (SIEM) solution framework for the protection of the aforementioned smart city services. The proposed SIEM relies on blockchain technology to securely store and access security events. Such security events are generated by IoT sentinels that are in charge of shielding groups of IoT devices. The IoT sentinels may be deployed in smart city scenarios, such as smart hospitals, smart transport systems, smart airports, among others, ensuring a satisfactory level of protection. The blockchain guarantees the non-repudiation and traceability of the registry of security events due to its features. To demonstrate the feasibility of the proposed approach, our proposal is implemented using Ethereum and validated through different use cases and experiments.
UR - http://www.scopus.com/inward/record.url?scp=85089579981&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85089579981&partnerID=8YFLogxK
U2 - 10.3390/s20164636
DO - 10.3390/s20164636
M3 - Research Article
C2 - 32824695
AN - SCOPUS:85089579981
SN - 1424-8220
VL - 20
SP - 1
EP - 22
JO - Sensors (Switzerland)
JF - Sensors (Switzerland)
IS - 16
M1 - 4636
ER -