@Article{cmc.2021.014165,
AUTHOR = {Muhammad Usman Tariq, Muhammad Babar, Mian Ahmad Jan, Akmal Saeed Khattak, Mohammad Dahman Alshehri, Abid Yahya},
TITLE = {Security Requirement Management for Cloud-Assisted and Internet of Things—Enabled Smart City},
JOURNAL = {Computers, Materials \& Continua},
VOLUME = {67},
YEAR = {2021},
NUMBER = {1},
PAGES = {625--639},
URL = {http://www.techscience.com/cmc/v67n1/41184},
ISSN = {1546-2226},
ABSTRACT = {The world is rapidly changing with the advance of information technology. The expansion of the Internet of Things (IoT) is a huge step in the development of the smart city. The IoT consists of connected devices that transfer information. The IoT architecture permits on-demand services to a public pool of resources. Cloud computing plays a vital role in developing IoT-enabled smart applications. The integration of cloud computing enhances the offering of distributed resources in the smart city. Improper management of security requirements of cloud-assisted IoT systems can bring about risks to availability, security, performance, confidentiality, and privacy. The key reason for cloud- and IoT-enabled smart city application failure is improper security practices at the early stages of development. This article proposes a framework to collect security requirements during the initial development phase of cloud-assisted IoT-enabled smart city applications. Its three-layered architecture includes privacy preserved stakeholder analysis (PPSA), security requirement modeling and validation (SRMV), and secure cloud-assistance (SCA). A case study highlights the applicability and effectiveness of the proposed framework. A hybrid survey enables the identification and evaluation of significant challenges.},
DOI = {10.32604/cmc.2021.014165}
}