TY - GEN
T1 - Securing Agentic AI in IoT Systems
AU - Kumi, Sandra
AU - Lomotey, Richard K.
AU - Deters, Ralph
N1 - Publisher Copyright:
© 2025 IEEE.
PY - 2025
Y1 - 2025
N2 - We present a dual-proxy, seven-plane gateway for agentic AI in IoT that separates data, control, security, autonomy, context/knowledge, coordination, and management concerns. A lightweight client-side proxy verifies, annotates, and signs requests, while a server-side proxy near the data plane enforces global policy and model routing. To govern autonomous AI, we add a Goal-Plan-Step sentinel that requires plan publication and step-level justifications, and we execute device commands through a Digital Twin. Our Rust/Actix-Web prototype hosts hot-swappable WebAssembly filters (Wasmtime). In closed-loop tests with 1,000 requests and 1-10 concurrent clients, median latency for the proxy-microservice invocations is below 0.8 seconds. Predictable behaviour persists up to 100 clients, with overload observed beyond 200 on a single GCP e2-medium host. These results indicate that governance and low-latency operation can be achieved for agentic IoT deployments with modest infrastructure requirements.
AB - We present a dual-proxy, seven-plane gateway for agentic AI in IoT that separates data, control, security, autonomy, context/knowledge, coordination, and management concerns. A lightweight client-side proxy verifies, annotates, and signs requests, while a server-side proxy near the data plane enforces global policy and model routing. To govern autonomous AI, we add a Goal-Plan-Step sentinel that requires plan publication and step-level justifications, and we execute device commands through a Digital Twin. Our Rust/Actix-Web prototype hosts hot-swappable WebAssembly filters (Wasmtime). In closed-loop tests with 1,000 requests and 1-10 concurrent clients, median latency for the proxy-microservice invocations is below 0.8 seconds. Predictable behaviour persists up to 100 clients, with overload observed beyond 200 on a single GCP e2-medium host. These results indicate that governance and low-latency operation can be achieved for agentic IoT deployments with modest infrastructure requirements.
UR - https://www.scopus.com/pages/publications/105032196934
UR - https://www.scopus.com/pages/publications/105032196934#tab=citedBy
U2 - 10.1109/SmartIoT66867.2025.00035
DO - 10.1109/SmartIoT66867.2025.00035
M3 - Conference contribution
AN - SCOPUS:105032196934
T3 - Proceedings - 2025 IEEE International Conference on Smart Internet of Things, SmartIoT 2025
SP - 199
EP - 206
BT - Proceedings - 2025 IEEE International Conference on Smart Internet of Things, SmartIoT 2025
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 9th International Conference on Smart Internet of Things, SmartIoT 2025
Y2 - 17 November 2025 through 20 November 2025
ER -