Abstract
Digital Twin (DT) technology empowers organizations to create virtual counterparts of their physical assets, thereby magnifying their analytical, optimization and decision-making capabilities. More specifically, the simulation capabilities of a DT generate high-quality data that not only benefit the DT owner organization, but also increase the potential of similar organizations by leveraging the DT’s capabilities when sharing its simulation results This collaborative sharing boosts the capabilities of each participating organization, fostering a collective intelligence that amplifies their competitive advantage. Nonetheless, data exchange must rigorously safeguard each organization’s data confidentiality, and access to this data must be thoroughly controlled. Thus, this paper introduces the novel concept of DT communities and proposes a hybrid access control architecture. This architecture seamlessly integrates the strengths of both Role Based Access Control (RBAC) and Organizational Based Access Control (OrBAC), facilitating secure, authorized intra- and inter-organizational information sharing in the context of Industry 5.0, combining the strengths of local DT communication and other organization’s DTs as well. Moreover, in order to show the feasibility of the approach for critical corporate organizations and their systems, in this paper we provide a proof-of-concept implementation of this architecture. To validate its functionality and efficiency, we perform a number of experimental studies showing how various entities can benefit from securely sharing DT models based on the concept of “community".
This is a preview of subscription content, log in via an institution to check access.
Similar content being viewed by others
References
Adel, A.: Future of industry 5.0 in society: human-centric solutions, challenges and prospective research areas. J. Cloud Comput. 11(1), 1–15 (2022)
Al-Jaroodi, J., Mohamed, N.: Pscps,: a distributed platform for cloud and fog integrated smart cyber-physical systems. IEEE Access 6, 41432–41449 (2018). https://doi.org/10.1109/ACCESS.2018.2856509
Alcaraz, C., Lopez, J.: Digital twin: a comprehensive survey of security threats. IEEE Commun. Surv. Tutor. 24(3), 1475–1503 (2022). https://doi.org/10.1109/COMST.2022.3171465
Alcaraz, C., Lopez, J.: Protecting digital twin networks for 6G-enabled industry 5.0 ecosystems. IEEE Netw. Magaz. 37(2), 302–308 (2023). https://doi.org/10.1109/MNET.004.2200529
Alcaraz, C., Fernandez-Gago, C., Lopez, J.: An early warning system based on reputation for energy control systems. IEEE Trans. Smart Grid 2(4), 827–834 (2011). https://doi.org/10.1109/TSG.2011.2161498
Alcaraz, C., Rubio, J.E., Lopez, J.: Blockchain-assisted access for federated smart grid domains: coupling and features. J. Parall. Distrib. Comput. 144, 124–135 (2020). https://doi.org/10.1016/j.jpdc.2020.05.012
Ali, M., Kaddoum, G., Li, W.T., Yuen, C., Tariq, M., Poor, H.V.: A smart digital twin enabled security framework for vehicle-to-grid cyber-physical systems. IEEE Transactions on Information Forensics and Security (2023)
Attaran, M., Celik, B.G.: Digital twin: benefits, use cases, challenges, and opportunities. Decis. Analyt. J. 6(100), 165 (2023). https://doi.org/10.1016/j.dajour.2023.100165
Cao, X., Li, X., Xiao, Y., Yao, Y., Tan, S., Wang, P.: Bdtwins: Blockchain-based digital twins lifecycle management. In: 2022 IEEE Smartworld, Ubiquitous Intelligence & Computing, Scalable Computing & Communications, Digital Twin, Privacy Computing, Metaverse, Autonomous & Trusted Vehicles (SmartWorld/UIC/ScalCom/DigitalTwin/PriComp/Meta), IEEE, pp 2003–2010 (2022)
Car, P., De Luca, S.: Eu Cyber Resilience Act. EPRS, European Parliament (2022)
Cathey, G., Benson, J., Gupta, M., Sandhu, R.: Edge centric secure data sharing with digital twins in smart ecosystems. In: 2021 Third IEEE International Conference on Trust, pp. 70–79. IEEE, Privacy and Security in Intelligent Systems and Applications (TPS-ISA) (2021)
Cf, O.: Transforming Our World: The 2030 Agenda for Sustainable Development. United Nations, New York, NY, USA (2015)
Chen, Z., Huang, L.: Digital twins for information-sharing in remanufacturing supply chain: A review. Energy 220(119), 712 (2021). https://doi.org/10.1016/j.energy.2020.119712
Commission, E., for Research DG, Innovation, Breque, M., De Nul, L., Petridis, A.: Industry 5.0 - Towards a sustainable, human-centric and resilient European industry. Publications Office of the European Union, (2021). https://doi.org/10.2777/308407
Council of European Union (2024) Cyber solidarity act, text of the provisional agreement, 20 march 2024. https://www.consilium.europa.eu/media/70805/ st08047-en24.pdf
Crnkovic, I., Malavolta, I., Muccini, H., Sharaf, M.: On the use of component-based principles and practices for architecting cyber-physical systems. In: 2016 19th International ACM SIGSOFT Symposium on Component-Based Software Engineering (CBSE), pp 23–32, (2016) https://doi.org/10.1109/CBSE.2016.9
Dietz, M., Putz, B., Pernul, G.: A distributed ledger approach to digital twin secure data sharing. In: Data and Applications Security and Privacy XXXIII: 33rd Annual IFIP WG 11.3 Conference, DBSec 2019, Charleston, SC, USA, July 15–17, 2019, Proceedings 33, Springer, pp 281–300 (2019)
Dietz, M., Schlette, D., Pernul, G.: Harnessing digital twin security simulations for systematic cyber threat intelligence. In: 2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC), pp 789–797, (2022) https://doi.org/10.1109/COMPSAC54236.2022.00129
Eclipse Foundation (2021) Dynamic security plugin. https://mosquitto.org/documentation/dynamic-security/
Gehrmann, C., Gunnarsson, M.: A digital twin based industrial automation and control system security architecture. IEEE Trans. Ind. Inf. 16(1), 669–680 (2019)
Gopstein, A., Nguyen, C., O’Fallon, C., Hastings, N., Wollman, D., et al.: NIST framework and roadmap for smart grid interoperability standards, release 4.0. Department of Commerce. National Institute of Standards and Technology (2021)
Hellmeier, M., Pampus, J., Qarawlus, H., Howar, F.: Implementing data sovereignty: Requirements & challenges from practice. In: Proceedings of the 18th International Conference on Availability, Reliability and Security, Association for Computing Machinery, New York, NY, USA, ARES ’23, (2023) https://doi.org/10.1145/3600160.3604995
Karsai, G., Balasubramanian, D., Dubey, A., Otte, WR.: Distributed and managed: Research challenges and opportunities of the next generation cyber-physical systems. In: 2014 IEEE 17th International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing, pp 1–8, (2014) https://doi.org/10.1109/ISORC.2014.36
Lai, C., Wang, M., Zheng, D.: Spdt: Secure and privacy-preserving scheme for digital twin-based traffic control. In: 2022 IEEE/CIC International Conference on Communications in China (ICCC), IEEE, pp 144–149 (2022)
Leng, J., Sha, W., Wang, B., Zheng, P., Zhuang, C., Liu, Q., Wuest, T., Mourtzis, D., Wang, L.: Industry 5.0: prospect and retrospect. J. Manuf. Syst. 65, 279–295 (2022). https://doi.org/10.1016/j.jmsy.2022.09.017
Light, R.A.: Mosquitto: server and client implementation of the mqtt protocol. J. Open Sour. Softw. 2(13), 265 (2017)
Lopez, J., Rubio, J.E.: Access control for cyber-physical systems interconnected to the cloud. Comput. Netw. 134, 46–54 (2018). https://doi.org/10.1016/j.comnet.2018.01.037
Lopez, J., Alcaraz, C., Roman, R.: Smart control of operational threats in control substations. Comput. Sec. 38, 14–27 (2013). https://doi.org/10.1016/j.cose.2013.03.013
Lopez, J., Rubio, J.E., Alcaraz, C.: A resilient architecture for the smart grid. IEEE Trans. Ind. Inf. 14, 3745–3753 (2018). https://doi.org/10.1109/TII.2018.2826226
Lopez, J., Rubio, J.E., Alcaraz, C.: Digital twins for intelligent authorization in the b5g-enabled smart grid. IEEE Wirel. Commun. 28, 48–55 (2021). https://doi.org/10.1109/MWC.001.2000336
Park, J., Sandhu, R.: The uconabc usage control model. ACM Trans. Inform. Syst. Sec. (TISSEC) 7(1), 128–174 (2004)
Putz, B., Dietz, M., Empl, P., Pernul, G.: Ethertwin: blockchain-based secure digital twin information management. Inf. Process. Manag. 58(1), 102–425 (2021)
Qi, Q., Tao, F., Hu, T., Anwer, N., Liu, A., Wei, Y., Wang, L., Nee, A.: Enabling technologies and tools for digital twin. Journal of Manufacturing Systems 58:3–21, (2021) https://doi.org/10.1016/j.jmsy.2019.10.001, digital Twin towards Smart Manufacturing and Industry 4.0
Qi, S., Yang, X., Yu, J., Qi, Y.: Blockchain-aware rollbackable data access control for iot-enabled digital twin. IEEE J. Select. Areas Commun. (2023)
Rahman, A., Hasan, K., Kundu, D., Islam, M.J., Debnath, T., Band, S.S., Kumar, N.: On the icn-iot with federated learning integration of communication: Concepts, security-privacy issues, applications, and future perspectives. Future Generat. Comput. Syst. 138, 61–88 (2023)
Rios, R., Lopez, J.: Analysis of location privacy solutions in wireless sensor networks. IET Commun. 5, 2518–2532 (2011). https://doi.org/10.1049/iet-com.2010.0825
Rios, R., Lopez, J.: Exploiting context-awareness to enhance source-location privacy in wireless sensor networks. Comput. J. 54, 1603–1615 (2011). https://doi.org/10.1093/comjnl/bxr055
Rubio, J.E., Alcaraz, C., Roman, R., Lopez, J.: Current cyber-defense trends in industrial control systems. Comput. Sec. 87(101), 561 (2019)
Schroeder, G.N., Steinmetz, C., Rodrigues, R.N., Henriques, R.V.B., Rettberg, A., Pereira, C.E.: A methodology for digital twin modeling and deployment for industry 4.0. Proc. IEEE. 109(4), 556–567 (2020)
Shen, W., Hu, T., Zhang, C., Ma, S.: Secure sharing of big digital twin data for smart manufacturing based on blockchain. J. Manuf. Syst. 61, 338–350 (2021)
Stafford, V.: Zero Trust Architecture. NIST Special Publication: Gaithersburg. pp 207-800 (2020)
Stal, M.: The broker architectural framework. Works. Concurr. Parall. Distrib. Patt. Obj. Orient. Progr. Held OOPSLA Citeseer 95, 1–19 (1995)
Standard, O.: extensible access control markup language (xacml) version 3.0. A:(22 January 2013) (2013)
Wei, W., An, B., Qiao, K., Shen, J.: A blockchain-based multi-users oblivious data sharing scheme for digital twin system in industrial internet of things. IEEE J. Select. Areas Commun. (2023)
Acknowledgements
Authors would like to thank the company S2Grupo for providing useful comments and feedback for improvements of the paper. The work has been partially supported by the project SEGRES (EXP-00131359/MIG-20201041) funded by the CDTI as part of the Ministerio de Ciencia, Innovaciación y Universidades; by the project SecTwin 5.0 (TED2021-129830B-I00), funded by MCIN/AEI/10.13039/501100011033 and by the European Union“NextGenerationEU”/PRTR; and by the project DUCA (101086308) funded by the European Union under HORIZON-TMA-MSCA-SE.
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Code availability:
not applicable.
Conflict of interest:
all authors declare that they have no Conflict of interest.
Ethical approval:
this article does not contain any studies with human participants or animals performed by any of the authors.
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.
About this article
Cite this article
Alcaraz, C., Meskini, I.H. & Lopez, J. Digital twin communities: an approach for secure DT data sharing. Int. J. Inf. Secur. 24, 17 (2025). https://doi.org/10.1007/s10207-024-00912-1
Published:
DOI: https://doi.org/10.1007/s10207-024-00912-1