Advanced Security Considerations In The Arrowhead Framework

The Arrowhead Framework aims to create collaborative automation using networked embedded devices by establishing a service oriented approach to govern them. Various cyber-physical Systems can provide and consume Services from one another in closed automation clouds. These System-of-Systems has been introduced by the Arrowhead framework as Local Clouds. These clouds - being high value targets can then be subject to an extensive amount of threats. This paper is dedicated towards revising the Arrowhead framework to further enhance its security solutions. A certificate-based architecture is presented to solve authentication and authorization tasks not just within, but in-between Local Clouds by using a token concept applied for services. This schema also allows the integration of resource constrained devices in coexistence with different levels of security.