System Architecture Design

More documents

Recommendations

Info

pSHIELDSystem Architecture DesignPU3.2.3.6 Key ManagementA key management scheme is an integral part of any deployed security system. Whether thecryptographic approach followed is symmetric or asymmetric, the role of an efficient key managementscheme is vital. Such a scheme is affected by the system's architecture, device classes, deploymentenvironment, potential attacks and other factors. For example, a key management scheme for a secureWSN needs to deal with the limitations of such a system in terms of nodes computational, storage andenergy constraints in addition to expensive wireless communication. Essentially, key managementcomprises key pre-distribution approaches and other schemes dependent on the nature of the network. Inall cases, certain basic operations should be supported such as key addition, revocation and renewal.3.3 Network Layer Definitions3.3.1 General Network Layer descriptionNetwork Layer is responsible for delivering data packets of variable length between hosts belonging todifferent networks. Implementation depends on application environment and possible collaborativenetworks. Generally, it may include connectionless communication, hosts addressing and messageforwarding, with IP and IP-based protocols being the most popular technology patterns. Network Layerdesign goes in accordance with MAC specification and may involve topics, such as, selection of theInternet Protocol Suite, Mobile IP for IPv4/IPv6 and Security Management, where IPsec is an openstandard security scheme for authentication and encryption of IP packets.The pSHIELD Network Layer is charged with routing, multi-fold connectivity tasks and trusted datatransfer among system components. Representative (for the scope of pSHIELD) topology of participatingnodes and their homogeneous or not “islands”, form the network’s structure. The offered communicationcapabilities and overall network functions are presented. The interactions and communication with otherlayers and modules should be described through well defined interfaces. A conceptual and modularNetwork Layer architecture is designed through a methodology that encompasses all the critical featuresdescribed already as the focus of the current study. Network Layer multi-technology architectural design isbased on a series of “key” factors, adjusted in the view of pSHIELD networking needs. The mostprominent of these factors (to be taken under consideration) are the following:• 6 key concepts of pSHIELD• Network requirements, phrased in deliverable D2.1• Selection of Nodes• Security, Privacy and Dependability functions and features• Application Scenario• Software stack• Reference Architecture• Connectivity and Trusted Routing• Technology status• Metrics• Interactions and Interfaces, Cross Layer ArchitecturePUD2.3.2Issue 5 Page 38 of 122
pSHIELDSystem Architecture Design• Robustness and Composability in the general system framework• Commitment to the Technical AnnexPUCryptographic nodes(IEEE 802.15.4 channel 11)`Nano nodes(IEEE 802.15.4 channel 13)Service DiscoveryAgent / UPnPBridgeService DiscoveryAgent / UPnPBridgeLANInternetMicro/Personal nodes(IEEE 802.15.4 channel 15)Self-x nodes(IEEE 802.15.4 channel 17)FPGAPower node(IEEE 802.15.4 channel 19)3.3.2 Software Defined RadioFigure 10 - Network Layer: paradigm architecture.SDR platform will be used to provide smart SPD driven transmission. It is a radio communication softwaresystem, implemented on software (e.g., on embedded devices), meant to replace system components,such as amplifiers, filters, mixers, modulators, originally implemented in hardware. It can receive andtransmit a variety of different radio waveforms, based on the software used. It can, also, be integratedeasily with hardware security modules. Significant advantages can be derived from this alternativerealization of a radio communication system:• Variable network parameters can be set straightforwardly and on-line, whereas in hardwareimplementation reconfigurations are, frequently, cumbersome or need to be conducted manually• The communication itself can be changed, providing the possibility of access to different networks(e.g., GSM and Wi-Fi) without having to switch between different devices• Signal processing can be managed by a general purpose processor, providing a radio that canreceive and transmit heterogeneous waveforms (depending on the specific software used)• SDR is flexible in overcoming problems of limited spectrum availability• Addition of an SDR node in a mesh network increases its capacity and reduces energy consumedper nodeSmart transmission techniques by pSHIELD Network Layer will rely on waveform-agile implementations ofSDR. The two basic elements which model an SDR system are a computing unit and an RF front end. InPUD2.3.2Issue 5 Page 39 of 122
Page 1 and 2: Project no: 100204pSHIELDpilot embe
Page 3 and 4: Contents1 Executive Summary .......
Page 5 and 6: FiguresFigure 1 - A generic embedde
Page 7 and 8: Figure 45 - pSHIELD Security Agent
Page 9 and 10: MGFMIPSMLNeLNFMRFPNMPNMPSNoLNVMOLOS
Page 11 and 12: Issue 5Page xi
Page 13 and 14: pSHIELDSystem Architecture DesignPU
Page 19 and 20: pSHIELDSystem Architecture Design3.
Page 31 and 32: pSHIELDSystem Architecture Design
Page 37: pSHIELDSystem Architecture DesignPU
Page 47 and 48: pSHIELDSystem Architecture Designen
Page 88 and 89:
pSHIELDSystem Architecture DesignPU
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 97 and 98:
Page 99 and 100:
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
show all

System Architecture Design

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?