Secure Integration of IoT and Cloud Computing

A special issue of Future Internet (ISSN 1999-5903). This special issue belongs to the section "Cybersecurity".

Deadline for manuscript submissions: 20 April 2026 | Viewed by 583

Special Issue Editors

School of Computer Science and Technology, Xidian University, Xi’an 710071, China
Interests: trusted computing technology; database security technology; IoT security issues; cloud computing, virtualization technology and security issues

E-Mail Website
Guest Editor
College of Computer Science and Engineering, Xi’an University of Technology, Xi’an 710048, China
Interests: network security; system vulnerability analysis

Special Issue Information

Dear Colleagues,

Cloud Computing provides an elastic infrastructure to support large-scale computing of massive data. Since the feature of “on-demand computing” in Cloud Computing, it can be adopted as an ideal technology in processing large-scale, heterogeneous, and complex data continuously generated by IoT platforms. The computing resources can be allocated, resized, and divided according to the dynamic data scale and computing requirements via virtualization technologies. Therefore, integrating IoT and Cloud Computing can significantly improve the power of IoT platforms.

However, due to the open network and the inevitable vulnerabilities of software/hardware, Cloud servers, and IoT devices have to face cyber-attacks, which can intrude and conduct malicious behaviors, such as stealing/tampering with sensitive data, interfering the program execution, creating zombie nodes via compromising devices, etc. Additionally, whenever an IoT device or a Cloud server/virtual machine has been compromised, the attackers can expand the attack surface to other entities (physical devices or virtual machines) via a network and cause further damage to the platform. Hence, security mechanisms towards IoT and Cloud Computing platforms must be considered comprehensively rather than taken independently.

This Special Issue aims to provide an overview of the latest developments regarding security mechanisms towards IoT and Cloud Computing systems, including security approaches from terminal devices to Cloud servers, virtual nodes to physical devices, and individual devices to the whole platform. Both theoretical and technical aspects are of interest. Interdisciplinary approaches are also highly welcome.

Topics of interest include, but are not limited to, the following:

  • Lightweight and privacy-preserving authentication in the IoT and Cloud environment;
  • Confidentiality and integrity protection during run-time code;
  • Trusted Computing technologies used in IoT or Cloud devices, such TPM and TEE;
  • Secure data management via novel architecture or technologies in both IoT and Cloud environment;
  • Security integration theories and technical solutions for both IoT and Cloud Computing platforms;
  • Security solutions for virtualization layer in IoT or Cloud Computing platforms;
  • Secure data transmission between heterogeneous devices;
  • Confidentiality and integrity protection for high-speed generation and massive data;
  • Analysis and discussion on threats in IoT and Cloud platforms.

Dr. Di Lu
Dr. Yichuan Wang
Guest Editors

Manuscript Submission Information

Manuscripts should be submitted online at www.mdpi.com by registering and logging in to this website. Once you are registered, click here to go to the submission form. Manuscripts can be submitted until the deadline. All submissions that pass pre-check are peer-reviewed. Accepted papers will be published continuously in the journal (as soon as accepted) and will be listed together on the special issue website. Research articles, review articles as well as short communications are invited. For planned papers, a title and short abstract (about 100 words) can be sent to the Editorial Office for announcement on this website.

Submitted manuscripts should not have been published previously, nor be under consideration for publication elsewhere (except conference proceedings papers). All manuscripts are thoroughly refereed through a single-blind peer-review process. A guide for authors and other relevant information for submission of manuscripts is available on the Instructions for Authors page. Future Internet is an international peer-reviewed open access monthly journal published by MDPI.

Please visit the Instructions for Authors page before submitting a manuscript. The Article Processing Charge (APC) for publication in this open access journal is 1600 CHF (Swiss Francs). Submitted papers should be well formatted and use good English. Authors may use MDPI's English editing service prior to publication or during author revisions.

Keywords

  • security mechanism
  • security integration
  • IoT
  • cloud computing
  • authentication methods
  • data security
  • system security
  • program security
  • virtualization security
  • network security

Benefits of Publishing in a Special Issue

  • Ease of navigation: Grouping papers by topic helps scholars navigate broad scope journals more efficiently.
  • Greater discoverability: Special Issues support the reach and impact of scientific research. Articles in Special Issues are more discoverable and cited more frequently.
  • Expansion of research network: Special Issues facilitate connections among authors, fostering scientific collaborations.
  • External promotion: Articles in Special Issues are often promoted through the journal's social media, increasing their visibility.
  • Reprint: MDPI Books provides the opportunity to republish successful Special Issues in book format, both online and in print.

Further information on MDPI's Special Issue policies can be found here.

Published Papers (1 paper)

Order results
Result details
Select all
Export citation of selected articles as:

Research

24 pages, 4359 KiB  
Article
HECS4MQTT: A Multi-Layer Security Framework for Lightweight and Robust Encryption in Healthcare IoT Communications
by Saud Alharbi, Wasan Awad and David Bell
Future Internet 2025, 17(7), 298; https://doi.org/10.3390/fi17070298 (registering DOI) - 30 Jun 2025
Abstract
Internet of Things (IoT) technology in healthcare has enabled innovative services that enhance patient monitoring, diagnostics and medical data management. However, securing sensitive health data while maintaining system efficiency of resource-constrained IoT devices remains a critical challenge. This work presents a comprehensive end-to-end [...] Read more.
Internet of Things (IoT) technology in healthcare has enabled innovative services that enhance patient monitoring, diagnostics and medical data management. However, securing sensitive health data while maintaining system efficiency of resource-constrained IoT devices remains a critical challenge. This work presents a comprehensive end-to-end IoT security framework for healthcare environments, addressing encryption at two key levels: lightweight encryption at the edge for resource-constrained devices and robust end-to-end encryption when transmitting data to the cloud via MQTT cloud brokers. The proposed system leverages multi-broker MQTT architecture to optimize resource utilization and enhance message reliability. At the edge, lightweight cryptographic techniques ensure low-latency encryption before transmitting data via a secure MQTT broker hosted within the hospital infrastructure. To safeguard data as it moves beyond the hospital to the cloud, stronger end-to-end encryption are applied to ensure end-to-end security, such as AES-256 and TLS 1.3, to ensure confidentiality and resilience over untrusted networks. A proof-of-concept Python 3.10 -based MQTT implementation is developed using open-source technologies. Security and performance evaluations demonstrate the feasibility of the multi-layer encryption approach, effectively balancing computational overhead with data protection. Security and performance evaluations demonstrate that our novel HECS4MQTT (Health Edge Cloud Security for MQTT) framework achieves a unique balance between efficiency and security. Unlike existing solutions that either impose high computational overhead at the edge or rely solely on transport-layer protection, HECS4MQTT introduces a layered encryption strategy that decouples edge and cloud security requirements. This design minimizes processing delays on constrained devices while maintaining strong cryptographic protection when data crosses trust boundaries. The framework also introduces a lightweight bridge component for re-encryption and integrity enforcement, thereby reducing broker compromise risk and supporting compliance with healthcare security regulations. Our HECS4MQTT framework offers a scalable, adaptable, and trust-separated security model, ensuring enhanced confidentiality, integrity, and availability of healthcare data while remaining suitable for deployment in real-world, latency-sensitive, and resource-limited medical environments. Full article
(This article belongs to the Special Issue Secure Integration of IoT and Cloud Computing)
Back to TopTop