{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,28]],"date-time":"2026-03-28T08:37:35Z","timestamp":1774687055227,"version":"3.50.1"},"reference-count":33,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2021,8,16]],"date-time":"2021-08-16T00:00:00Z","timestamp":1629072000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Internet Things"],"published-print":{"date-parts":[[2021,11,30]]},"abstract":"<jats:p>Embedded sensors and smart devices have turned the environments around us into smart spaces that could automatically evolve, depending on the needs of users, and adapt to the new conditions. While smart spaces are beneficial and desired in many aspects, they could be compromised and expose privacy, security, or render the whole environment a hostile space in which regular tasks cannot be accomplished anymore. In fact, ensuring the security of smart spaces is a very challenging task due to the heterogeneity of devices, vast attack surface, and device resource limitations. The key objective of this study is to minimize the manual work in enforcing the security of smart spaces by leveraging the autonomic computing paradigm in the management of IoT environments. More specifically, we strive to build an autonomic manager that can monitor the smart space continuously, analyze the context, plan and execute countermeasures to maintain the desired level of security, and reduce liability and risks of security breaches. We follow the microservice architecture pattern and propose a generic ontology named Secure Smart Space Ontology (SSSO) for describing dynamic contextual information in security-enhanced smart spaces. Based on SSSO, we build an autonomic security manager with four layers that continuously monitors the managed spaces, analyzes contextual information and events, and automatically plans and implements adaptive security policies.<\/jats:p>\n          <jats:p>As the evaluation, focusing on a current BlackBerry customer problem, we deployed the proposed autonomic security manager to maintain the security of a smart conference room with 32 devices and 66 services. The high performance of the proposed solution was also evaluated on a large-scale deployment with over 1.8 million triples.<\/jats:p>","DOI":"10.1145\/3466696","type":"journal-article","created":{"date-parts":[[2021,8,16]],"date-time":"2021-08-16T21:35:32Z","timestamp":1629149732000},"page":"1-20","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":14,"title":["Autonomic Security Management for IoT Smart Spaces"],"prefix":"10.1145","volume":"2","author":[{"given":"Changyuan","family":"Lin","sequence":"first","affiliation":[{"name":"University of Alberta, Edmonton, Alberta, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hamzeh","family":"Khazaei","sequence":"additional","affiliation":[{"name":"York University, North York, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andrew","family":"Walenstein","sequence":"additional","affiliation":[{"name":"BlackBerry, Waterloo, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andrew","family":"Malton","sequence":"additional","affiliation":[{"name":"BlackBerry, Waterloo, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2021,8,16]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"International Conference on Universal Access in Human-computer Interaction. Springer, 3\u201312","author":"Balandin Sergey","year":"2009","unstructured":"Sergey Balandin and Heikki Waris . 2009 . Key properties in the development of smart spaces . In International Conference on Universal Access in Human-computer Interaction. Springer, 3\u201312 . Sergey Balandin and Heikki Waris. 2009. Key properties in the development of smart spaces. In International Conference on Universal Access in Human-computer Interaction. Springer, 3\u201312."},{"key":"e_1_2_1_2_1","volume-title":"28th International Flairs Conference.","author":"Borgo Stefano","year":"2015","unstructured":"Stefano Borgo , Amedeo Cesta , Andrea Orlandini , and Alessandro Umbrico . 2015 . An ontology-based domain representation for plan-based controllers in a reconfigurable manufacturing system . In 28th International Flairs Conference. Stefano Borgo, Amedeo Cesta, Andrea Orlandini, and Alessandro Umbrico. 2015. An ontology-based domain representation for plan-based controllers in a reconfigurable manufacturing system. In 28th International Flairs Conference."},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/ETFA.2016.7733707"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/FRUCT.2014.6872422"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1108\/17440080911006199"},{"key":"e_1_2_1_6_1","volume-title":"2nd International Conference on Models and Ontology-based Design of Protocols, Architectures and Services. 1\u20139.","author":"Evesti Antti","year":"2011","unstructured":"Antti Evesti , Reijo Savola , Eila Ovaska , and Jarkko Kuusij\u00e4rvi . 2011 . The design, instantiation, and usage of information security measuring ontology . In 2nd International Conference on Models and Ontology-based Design of Protocols, Architectures and Services. 1\u20139. Antti Evesti, Reijo Savola, Eila Ovaska, and Jarkko Kuusij\u00e4rvi. 2011. The design, instantiation, and usage of information security measuring ontology. In 2nd International Conference on Models and Ontology-based Design of Protocols, Architectures and Services. 1\u20139."},{"key":"e_1_2_1_7_1","volume-title":"Architecture and knowledge-driven self-adaptive security in smart space. Computers 2, 1","author":"Evesti Antti","year":"2013","unstructured":"Antti Evesti , Jani Suomalainen , and Eila Ovaska . 2013. Architecture and knowledge-driven self-adaptive security in smart space. Computers 2, 1 ( 2013 ). Antti Evesti, Jani Suomalainen, and Eila Ovaska. 2013. Architecture and knowledge-driven self-adaptive security in smart space. Computers 2, 1 (2013)."},{"key":"e_1_2_1_8_1","unstructured":"Apache Jena. 2007. Semantic web framework for Java. https:\/\/jena.apache.org\/.  Apache Jena. 2007. Semantic web framework for Java. https:\/\/jena.apache.org\/."},{"key":"e_1_2_1_9_1","volume-title":"Chess","author":"Kephart Jeffrey O.","year":"2003","unstructured":"Jeffrey O. Kephart and David M . Chess . 2003 . The vision of autonomic computing. Computer 1 (2003), 41\u201350. Jeffrey O. Kephart and David M. Chess. 2003. The vision of autonomic computing. Computer1 (2003), 41\u201350."},{"key":"e_1_2_1_10_1","volume-title":"Ndubuaku","author":"Khan Yasir Imtiaz","year":"2018","unstructured":"Yasir Imtiaz Khan and Maryleen U . Ndubuaku . 2018 . Ontology-based automation of security guidelines for smart homes. In IEEE 4th World Forum on Internet of Things (WF-IoT). IEEE , 35\u201340. Yasir Imtiaz Khan and Maryleen U. Ndubuaku. 2018. Ontology-based automation of security guidelines for smart homes. In IEEE 4th World Forum on Internet of Things (WF-IoT). IEEE, 35\u201340."},{"key":"e_1_2_1_11_1","volume-title":"Musen","author":"Knublauch Holger","year":"2004","unstructured":"Holger Knublauch , Ray W. Fergerson , Natalya F. Noy , and Mark A . Musen . 2004 . The Prot\u00e9g\u00e9 OWL plugin: An open development environment for semantic web applications. In International Semantic Web Conference. Springer , 229\u2013243. Holger Knublauch, Ray W. Fergerson, Natalya F. Noy, and Mark A. Musen. 2004. The Prot\u00e9g\u00e9 OWL plugin: An open development environment for semantic web applications. In International Semantic Web Conference. Springer, 229\u2013243."},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/FRUCT.2013.6737943"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/FRUCT.2014.6872437"},{"key":"e_1_2_1_14_1","volume-title":"Gurtov","author":"Korzun Dmitry G.","year":"2013","unstructured":"Dmitry G. Korzun , Sergey I. Balandin , and Andrei V . Gurtov . 2013 a. Deployment of smart spaces in internet of things: Overview of the design challenges. In Internet of Things, Smart Spaces, and Next Generation Networking. Springer , 48\u201359. Dmitry G. Korzun, Sergey I. Balandin, and Andrei V. Gurtov. 2013a. Deployment of smart spaces in internet of things: Overview of the design challenges. In Internet of Things, Smart Spaces, and Next Generation Networking. Springer, 48\u201359."},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.4018\/IJERTCS.2015010101"},{"key":"e_1_2_1_16_1","volume-title":"Swick","author":"Lassila Ora","year":"1999","unstructured":"Ora Lassila and Ralph R . Swick . 1999 . Resource description framework (RDF) model and syntax specification. https:\/\/www.w3.org\/TR\/PR-rdf-syntax\/. Ora Lassila and Ralph R. Swick. 1999. Resource description framework (RDF) model and syntax specification. https:\/\/www.w3.org\/TR\/PR-rdf-syntax\/."},{"key":"e_1_2_1_17_1","volume-title":"OWLED","volume":"258","author":"Latfi Fatiha","year":"2007","unstructured":"Fatiha Latfi , Bernard Lefebvre , and C\u00e9line Descheneaux . 2007 . Ontology-based management of the telehealth smart home, dedicated to elderly in loss of cognitive autonomy . In OWLED , Vol. 258 . Fatiha Latfi, Bernard Lefebvre, and C\u00e9line Descheneaux. 2007. Ontology-based management of the telehealth smart home, dedicated to elderly in loss of cognitive autonomy. In OWLED, Vol. 258."},{"key":"e_1_2_1_18_1","volume-title":"The internet of things (IoT): Applications, investments, and challenges for enterprises. Bus. Horiz.ons 58, 4","author":"Lee In","year":"2015","unstructured":"In Lee and Kyoochun Lee . 2015. The internet of things (IoT): Applications, investments, and challenges for enterprises. Bus. Horiz.ons 58, 4 ( 2015 ). In Lee and Kyoochun Lee. 2015. The internet of things (IoT): Applications, investments, and challenges for enterprises. Bus. Horiz.ons 58, 4 (2015)."},{"key":"e_1_2_1_19_1","volume-title":"Encyclopedia of Database Systems","author":"Liu Ling","unstructured":"Ling Liu and M. Tamer \u00d6zsu . 2009. Encyclopedia of Database Systems . Vol. 6 . Springer New York , NY. Ling Liu and M. Tamer \u00d6zsu. 2009. Encyclopedia of Database Systems. Vol. 6. Springer New York, NY."},{"key":"e_1_2_1_20_1","volume-title":"IEEE Symposium on Service-Oriented System Engineering (SOSE). IEEE, 9\u201318","author":"Lu Duo","year":"2017","unstructured":"Duo Lu , Dijiang Huang , Andrew Walenstein , and Deep Medhi . 2017 a. A secure microservice framework for IoT . In IEEE Symposium on Service-Oriented System Engineering (SOSE). IEEE, 9\u201318 . Duo Lu, Dijiang Huang, Andrew Walenstein, and Deep Medhi. 2017a. A secure microservice framework for IoT. In IEEE Symposium on Service-Oriented System Engineering (SOSE). IEEE, 9\u201318."},{"key":"e_1_2_1_21_1","volume-title":"IEEE 18th International Symposium on a World of Wireless, Mobile and Multimedia Networks (WoWMoM). IEEE, 1\u20136.","author":"Lu Duo","year":"2017","unstructured":"Duo Lu , Zhichao Li , and Dijiang Huang . 2017 b. Platooning as a service of autonomous vehicles . In IEEE 18th International Symposium on a World of Wireless, Mobile and Multimedia Networks (WoWMoM). IEEE, 1\u20136. Duo Lu, Zhichao Li, and Dijiang Huang. 2017b. Platooning as a service of autonomous vehicles. In IEEE 18th International Symposium on a World of Wireless, Mobile and Multimedia Networks (WoWMoM). IEEE, 1\u20136."},{"key":"e_1_2_1_22_1","volume-title":"Frank Van Harmelen, et\u00a0al","author":"McGuinness Deborah L","year":"2004","unstructured":"Deborah L McGuinness , Frank Van Harmelen, et\u00a0al . 2004 . OWL web ontology language overview. W3C Recomm . 10, 10 (2004). Deborah L McGuinness, Frank Van Harmelen, et\u00a0al. 2004. OWL web ontology language overview. W3C Recomm. 10, 10 (2004)."},{"key":"e_1_2_1_23_1","first-page":"10","article-title":"Event-driven architecture overview","volume":"2","author":"Michelson Brenda M.","year":"2006","unstructured":"Brenda M. Michelson . 2006 . Event-driven architecture overview . Patric. Seyb. Group 2 , 12 (2006), 10 \u2013 1571 . Brenda M. Michelson. 2006. Event-driven architecture overview. Patric. Seyb. Group 2, 12 (2006), 10\u20131571.","journal-title":"Patric. Seyb. Group"},{"key":"e_1_2_1_24_1","first-page":"1","article-title":"Towards a definition of the internet of things (IoT)","volume":"1","author":"Minerva Roberto","year":"2015","unstructured":"Roberto Minerva , Abyi Biru , and Domenico Rotondi . 2015 . Towards a definition of the internet of things (IoT) . IEEE Internet Init. 1 (2015), 1 \u2013 86 . Roberto Minerva, Abyi Biru, and Domenico Rotondi. 2015. Towards a definition of the internet of things (IoT). IEEE Internet Init. 1 (2015), 1\u201386.","journal-title":"IEEE Internet Init."},{"key":"e_1_2_1_25_1","volume-title":"Security Challenges and Approaches in Internet of Things","author":"Misra Sridipta","unstructured":"Sridipta Misra , Muthucumaru Maheswaran , and Salman Hashmi . 2017. Security Challenges and Approaches in Internet of Things . Springer . Sridipta Misra, Muthucumaru Maheswaran, and Salman Hashmi. 2017. Security Challenges and Approaches in Internet of Things. Springer."},{"key":"e_1_2_1_26_1","volume-title":"IEEE 23rd International Conference on Parallel and Distributed Systems (ICPADS). IEEE, 360\u2013367","author":"Moeini Hessam","year":"2017","unstructured":"Hessam Moeini , I- Ling Yen , and Farokh Bastani . 2017 . Routing in IoT network for dynamic service discovery . In IEEE 23rd International Conference on Parallel and Distributed Systems (ICPADS). IEEE, 360\u2013367 . Hessam Moeini, I-Ling Yen, and Farokh Bastani. 2017. Routing in IoT network for dynamic service discovery. In IEEE 23rd International Conference on Parallel and Distributed Systems (ICPADS). IEEE, 360\u2013367."},{"key":"e_1_2_1_27_1","volume-title":"Toward data discovery in dynamic smart city applications","author":"Moeini Hessam","unstructured":"Hessam Moeini , Wenxi Zeng , I- Ling Yen , and Farokh Bastani . 2019. Toward data discovery in dynamic smart city applications . In IEEE 21st International Conference on High Performance Computing and Communications; IEEE 17th International Conference on Smart City; IEEE 5th International Conference on Data Science and Systems (HPCC\/SmartCity\/DSS). IEEE , 2572\u20132579. Hessam Moeini, Wenxi Zeng, I-Ling Yen, and Farokh Bastani. 2019. Toward data discovery in dynamic smart city applications. In IEEE 21st International Conference on High Performance Computing and Communications; IEEE 17th International Conference on Smart City; IEEE 5th International Conference on Data Science and Systems (HPCC\/SmartCity\/DSS). IEEE, 2572\u20132579."},{"key":"e_1_2_1_28_1","volume-title":"6th International Conference on Enterprise Systems (ES). IEEE, 82\u201389","author":"Nagowah Soulakshmee D.","year":"2018","unstructured":"Soulakshmee D. Nagowah , Hatem Ben Sta , and Baby Gobin-Rahimbux . 2018 . An overview of semantic interoperability ontologies and frameworks for IoT . In 6th International Conference on Enterprise Systems (ES). IEEE, 82\u201389 . Soulakshmee D. Nagowah, Hatem Ben Sta, and Baby Gobin-Rahimbux. 2018. An overview of semantic interoperability ontologies and frameworks for IoT. In 6th International Conference on Enterprise Systems (ES). IEEE, 82\u201389."},{"key":"e_1_2_1_29_1","unstructured":"Eric Prud'hommeaux Andy Seaborne. 2007. SPARQL query language for RDF. https:\/\/www.w3.org\/TR\/rdf-sparql-query\/.  Eric Prud'hommeaux Andy Seaborne. 2007. SPARQL query language for RDF. https:\/\/www.w3.org\/TR\/rdf-sparql-query\/."},{"key":"e_1_2_1_30_1","unstructured":"Nicolas Seydoux Khalil Drira Nathalie Hernandez and Thierry Monteil. 2016. Autonomy through knowledge: How IoT-O supports the management of a connected apartment. In Semantic Web Technologies for the Internet of Things (SWIT). CEUR-WS.  Nicolas Seydoux Khalil Drira Nathalie Hernandez and Thierry Monteil. 2016. Autonomy through knowledge: How IoT-O supports the management of a connected apartment. In Semantic Web Technologies for the Internet of Things (SWIT). CEUR-WS."},{"key":"e_1_2_1_31_1","volume-title":"An open IoT framework based on microservices architecture. China Commun. 14, 2","author":"Sun Long","year":"2017","unstructured":"Long Sun , Yan Li , and Raheel Ahmed Memon . 2017. An open IoT framework based on microservices architecture. China Commun. 14, 2 ( 2017 ). Long Sun, Yan Li, and Raheel Ahmed Memon. 2017. An open IoT framework based on microservices architecture. China Commun. 14, 2 (2017)."},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2016.11.011"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101648"}],"container-title":["ACM Transactions on Internet of Things"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3466696","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3466696","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T21:24:52Z","timestamp":1750195492000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3466696"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,8,16]]},"references-count":33,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2021,11,30]]}},"alternative-id":["10.1145\/3466696"],"URL":"https:\/\/doi.org\/10.1145\/3466696","relation":{},"ISSN":["2577-6207"],"issn-type":[{"value":"2577-6207","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,8,16]]},"assertion":[{"value":"2019-10-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-05-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-08-16","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}