Open Access

ARTICLE

Security Requirement Management for Cloud-Assisted and Internet of Things—Enabled Smart City

Muhammad Usman Tariq¹, Muhammad Babar², Mian Ahmad Jan^3,4,5,*, Akmal Saeed Khattak⁶, Mohammad Dahman Alshehri⁷, Abid Yahya⁸

1 Abu Dhabi School of Management, Abu Dhabi, 6844, United Arab Emirates
2 Department of Computing and Technology, Iqra University, Islamabad, 44000, Pakistan
3 Institute of Research and Development, Duy Tan University, Da Nang, 550000, Vietnam
4 The Faculty of Information Technology, Duy Tan University, Da Nang, 550000, Vietnam
5 Department of Computer Sciences, Abdul Wali Khan University, Mardan, 23200, Pakistan
6 Department of Computer Sciences, Quaid-i-Azam University, Islamabad, 44000, Pakistan
7 Department of Computer Science, College of Computers and Information Technology, Taif University, Taif, 21944, Saudi Arabia
8 Botswana International University of Science and Technology, Palapye, 016, Botswana

* Corresponding Author: Mian Ahmad Jan. Email:

(This article belongs to the Special Issue: Machine Learning-based Secured and Privacy-preserved Smart City)

Computers, Materials & Continua 2021, 67(1), 625-639. https://doi.org/10.32604/cmc.2021.014165

Received 03 September 2020; Accepted 08 November 2020; Issue published 12 January 2021

Abstract

The world is rapidly changing with the advance of information technology. The expansion of the Internet of Things (IoT) is a huge step in the development of the smart city. The IoT consists of connected devices that transfer information. The IoT architecture permits on-demand services to a public pool of resources. Cloud computing plays a vital role in developing IoT-enabled smart applications. The integration of cloud computing enhances the offering of distributed resources in the smart city. Improper management of security requirements of cloud-assisted IoT systems can bring about risks to availability, security, performance, confidentiality, and privacy. The key reason for cloud- and IoT-enabled smart city application failure is improper security practices at the early stages of development. This article proposes a framework to collect security requirements during the initial development phase of cloud-assisted IoT-enabled smart city applications. Its three-layered architecture includes privacy preserved stakeholder analysis (PPSA), security requirement modeling and validation (SRMV), and secure cloud-assistance (SCA). A case study highlights the applicability and effectiveness of the proposed framework. A hybrid survey enables the identification and evaluation of significant challenges.

---

Keywords

---