JASON: Previous Research

Overview | Research activities | Conclusions

In recent years the use of embedded devices and smartcards has been growing rapidly. However, there are many threats related to this upsurge (e.g. abusing devices to gain illicit information or steal money). Hence there is a need for secure solutions for such cases. The JASON project aims to bring a better level of security to distributed systems that involve large number of embedded devices.

Overview

The aim of the JASON project is to build a secure system architecture and a corresponding programming paradigm for ambient applications. The main assumption of the system is separation of concerns: the programmer only has to specify security (and remote management) requirements, and the JASON system translates them into a secure implementation. The resulting platform allows straightforward design and implements secure system that can be managed remotely.

The M2M (Machine to Machine) system is developed by Chess, to securely control embedded devices by Back Office Systems. A typical instance of the M2M system consists of a network of sensors that monitor changes in an environment. The M2M controllers collect data from the sensors and send it to the M2M Back Office System (BOS). Typical M2M applications are: Payment Terminal, Home Control Box, Park and Pay system, and the monitoring of fuel and gas distribution systems. These are typical applications for which the JASON architecture is well suited. Using JASON the programmer can specify security requirements such as encryption, authentication for the communication between sensors and the M2M controllers, between the controllers and the M2M BOS. The JASON platform can translate these requirements into secure implementation.

Research activities

Here we give brief description of our recent research on the JASON project (Javacard As Secure Objects Networks). In our current research we concentrate on the following topics:

The application of JASON for systems consisting of many embedded devices. A good example of such a system is Chess's M2M (Machine To Machine) platform.
Investigating typical M2M business cases, like
- Home Control Box, or
- Payment terminal.
Investigating which modifications to the current JASON platform (which was designed primarily with smartcards in mind) are needed to fulfill M2M systems requirements.
Investigating three possible approaches for secure compartments in JASON:
- Java sandbox,
- SELinux compartment, or
- Xen guest operating system.

Conclusions

Our initial investigations support our claim that the JASON platform can significantly improve the security level in M2M systems.

The JASON project builds on previous research, which is summarized here.

Last Version - $Revision: 1.4 $ / $Date: 2006/09/12 06:47:03 $ Maintained by Jaap-Henk Hoepman Email: Email address