Singapore Institute of Technology
Browse

File(s) under embargo

Reason: Publisher copyright requirement.

19

day(s)

until file(s) become available

Security-enhanced orchestration platform for Building Management System

conference contribution
posted on 2024-08-01, 04:01 authored by Ching Bon ChanChing Bon Chan, Wye Kaye YanWye Kaye Yan, Jung Man Ma, Kai Mun Loh, Tan Yu, Malcolm Yoke Hean LowMalcolm Yoke Hean Low, Habib Rehman, Thong Chee Phua

A Building Management System (BMS) is a critical infrastructure that includes different subsystems such as water supply management systems (WSMS), power monitoring systems (PMS), and heating, ventilation, and air conditioning systems (HVAC). In recent years, integrating Internet-of-Things (IoT) devices to improve the BMS has become a trend. The MQ Telemetry Transport (MQTT) protocol is widely used inside BMSs as the preferred communication protocol when integrating with IoT devices. However, these subsystems are typically isolated, which poses a challenge in managing them. Each subsystem has its own individual platform and a separate dashboard that is used to manage the particular system. This isolation makes it challenging to monitor cyber-attacks targeting a specific subsystem due to the lack of visibility. In this paper, we propose a proof-of-concept (POC) security-enhanced orchestration platform for BMS. The platform ingests information from various BMS subsystems and IoT devices to collect BMS activities. We have introduced and integrated a device auto-recovery and isolation methodology into the orchestration platform to mitigate threats and cyber-attacks. The proposed platform aims to enhance the security and visibility of the BMS by integrating the subsystems and devices under a single platform, allowing for a more efficient and secure management of the overall system.

History

Journal/Conference/Book title

Seventeenth Annual IFIP WG 11.10 International Conference on Critical Infrastructure Protection

Publication date

2023-12-29

Version

  • Post-print

Rights statement

This version of the article has been accepted for publication, after peer review (when applicable) and is subject to Springer Nature’s AM terms of use, but is not the Version of Record and does not reflect post-acceptance improvements, or any corrections. The Version of Record is available online at: http://dx.doi.org/10.1007/978-3-031-49585-4_8

Corresponding author

Raymond Chan

Usage metrics

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC