Repository logo
 

Zero-Trust Foundation Models: A New Paradigm for Secure and Collaborative Artificial Intelligence for Internet of Things

Accepted version
Peer-reviewed

Repository URI

https://www.repository.cam.ac.uk/handle/1810/390203

Repository DOI

https://doi.org/10.17863/CAM.121829
Thumbnail Image

Files

Primary Accepted version (12.87 MB)

Type

Article

Change log

Authors

Li, K  ORCID logo  https://orcid.org/0000-0002-0517-2392
Yuan, X  ORCID logo  https://orcid.org/0000-0002-9167-1613
Li, S  ORCID logo  https://orcid.org/0000-0002-5516-9394
Zou, S  ORCID logo  https://orcid.org/0000-0003-1430-2555

Abstract

This paper focuses on Zero-Trust Foundation Models (ZTFMs), a novel paradigm that embeds zero-trust security principles into the lifecycle of foundation models (FMs) for Internet of Things (IoT) systems. By integrating core tenets, such as least privilege access, continuous verification, data confidentiality, and behavioral analytics into the design, training, and deployment of FMs, ZTFMs can enable secure, privacy-preserving AI across distributed, heterogeneous, and potentially adversarial IoT environments. We present the first structured synthesis of ZTFMs, identifying their potential to transform conventional trust-based IoT architectures into resilient, self-defending ecosystems. Moreover, we propose a comprehensive technical framework, incorporating federated learning (FL), blockchain-based identity management, micro-segmentation, and trusted execution environments (TEEs) to support decentralized, verifiable intelligence at the network edge. In addition, we investigate emerging security threats unique to ZTFM-enabled systems and evaluate countermeasures, such as anomaly detection, adversarial training, and secure aggregation. Through this analysis, we highlight key open research challenges in terms of scalability, secure orchestration, interpretable threat attribution, and dynamic trust calibration. This survey lays a foundational roadmap for secure, intelligent, and trustworthy IoT infrastructures powered by FMs.

Description

Keywords

4606 Distributed Computing and Systems Software, 46 Information and Computing Sciences, 4604 Cybersecurity and Privacy, Machine Learning and Artificial Intelligence, Networking and Information Technology R&D (NITRD)

Journal Title

IEEE Internet of Things Journal

Conference Name

Journal ISSN

2327-4662
2327-4662

Volume Title

PP

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Publisher DOI

https://doi.org/10.1109/JIOT.2025.3603957

Rights and licensing

Attribution 4.0 International
Except where otherwised noted, this item's license is described as Attribution 4.0 International
Sponsorship
1. the CISTER Research Unit (UIDP/UIDB/04234/2020), financed by National Funds through FCT/MCTES (Portuguese Foundation for Science and Technology), by project ADANET (PTDC/EEICOM/3362/2021). 2. Aero.Next Portugal (ref. C645727867-00000066), funded by the EU/Next Generation, within call n.o 02/C05-i01/2022 of the Recovery and Resilience Plan (RRP). 3. the AXA Research Fund (AXA Chair for Internet of Everything at Koc University)

Collections

University of Cambridge Research Outputs (Articles and Conferences)