Decentralizing privacy enforcement for Internet of Things smart objects

Sagirlar, Gokhan; Carminati, Barbara; Ferrari, Elena

doi:10.1016/j.comnet.2018.07.019

Cited by 26 publications

(26 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this regard, studies on the use of IPSec/IPv6 and OpenSSL in virtual private networks have been performed to protect smart objects and provide end-to-end security [92]. e same is true for studies on end-to-end security framework development of the Constrained Application Protocol (CoAP) [93][94][95] and on frameworks in which smart-object users designate privacy preferences to protect personal information generated and consumed by smart objects [96]. Smart objects that have recently attracted attention are vehicles that are equipped with various sensor devices, actuators, GPS (global positioning system) receivers, and micro-embedded computers to collect, process, and transmit vast amounts of data [97,98].…”

Section: Keyword Clustering and Evolution Of Research On Iotmentioning

confidence: 99%

See 1 more Smart Citation

Current Research Trends in IoT Security: A Systematic Mapping Study

Lee

2021

Mobile Information Systems

View full text Add to dashboard Cite

The smart mobile Internet-of-things (IoT) network lays the foundation of the fourth industrial revolution, the era of hyperconnectivity, hyperintelligence, and hyperconvergence. As this revolution gains momentum, the security of smart mobile IoT networks becomes an essential research topic. This study aimed to provide comprehensive insights on IoT security. To this end, we conducted a systematic mapping study of the literature to identify evolving trends in IoT security and determine research subjects. We reviewed the literature from January 2009 to August 2020 to identify influential researchers and trends of keywords. We additionally performed structural topic modeling to identify current research topics and the most promising ones via topic trend estimation. We synthesized and interpreted the results of the systematic mapping study to devise future research directions. The results obtained from this study are useful to understand current trends in IoT security and provide insights into research and development of IoT security.

show abstract

Section: Keyword Clustering and Evolution Of Research On Iotmentioning

confidence: 99%

“…e first subtopic is related to personal information security [280][281][282][283]. e second subtopic is related to the data value chain, including information related to the owner's perception of privacy protection and the right to make decisions about personal information protection [96,[284][285][286][287].…”

Section: Identification Of Topics In Iot Securitymentioning

confidence: 99%

Current Research Trends in IoT Security: A Systematic Mapping Study

Lee

2021

Mobile Information Systems

View full text Add to dashboard Cite

show abstract

“…When it comes to IoT, blockchain can be used to store critical machine-to-machine communications, sent as blockchain transactions, ensuring accountability and security of 1 Block structure varies in different blockchain protocols, here we list the most common elements. 2 ethereum.org the stored data. It can also provide identity and proof of provenance of IoT devices with its cryptographic functions.…”

Section: Introductionmentioning

confidence: 99%

Hybrid-IoT: Hybrid Blockchain Architecture for Internet of Things - PoW Sub-Blockchains

Sagirlar

Carminati

Ferrari

et al. 2018

2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and I

Self Cite

100

View full text Add to dashboard Cite

From its early days the Internet of Things (IoT) has evolved into a decentralized system of cooperating smart objects with the requirement, among others, of achieving distributed consensus. Yet, current IoT platform solutions are centralized cloud based computing infrastructures, manifesting a number of significant disadvantages, such as, among others, high cloud server maintenance costs, weakness for supporting time-critical IoT applications, security and trust issues. Enabling blockchain technology into IoT can help to achieve a proper distributed consensus based IoT system that overcomes those disadvantages. While this is an ideal match, it is still a challenging endeavor. In this paper we take a first step towards that goal by designing Hybrid-IoT, a hybrid blockchain architecture for IoT. In Hybrid-IoT, subgroups of IoT devices form PoW blockchains, referred to as PoW sub-blockchains. Then, the connection among the PoW subblockchains employs a BFT inter-connector framework, such as Polkadot or Cosmos. In this paper, we focus on the PoW sub-blockchains formation, guided by a set of guidelines based on a set of dimensions, metrics and bounds. In order to prove the validity of the approach we carry on a performance and security evaluation.

show abstract

“…IoT technology has been growing chaotically on many environments, such as homes and factories [1], connecting exceptionally large number of devices, expected to increase up to 130 billion devices in 2030. 3 Yet, this increasing popularity has made IoT devices a powerful amplifying platform for cyberattacks [2]. In fact, IoT devices are often simple products that due to the limits of available constrained-resources do not take security as primary goal.…”

Section: Introductionmentioning

confidence: 99%

“…As proof of this, a recent study from HP found that more than 70% of IoT devices do not have passwords with sufficient complexity and use unencrypted network services, resulting in being easy targets for attackers. 4 In such a vulnerable environment, attackers can easily gain access to insecure IoT devices, and inject malicious softwares, malware, to control them or to steal confidential information [3]. Today, one of the most relevant threat posed by malware in IoT is represented by malicious botnets.…”

Section: Introductionmentioning

confidence: 99%

AutoBotCatcher: Blockchain-Based P2P Botnet Detection for the Internet of Things

Sagirlar

Carminati

Ferrari

2018

2018 IEEE 4th International Conference on Collaboration and Internet Computing (CIC)

Self Cite

View full text Add to dashboard Cite

In general, a botnet is a collection of compromised internet computers, controlled by attackers for malicious purposes. To increase attacks' success chance and resilience against defence mechanisms, modern botnets have often a decentralized P2P structure. Here, IoT devices are playing a critical role, becoming one of the major tools for malicious parties to perform attacks. Notable examples are DDoS attacks on Krebs on Security 1 and DYN 2 , which have been performed by IoT devices part of botnets.We take a first step towards detecting P2P botnets in IoT, by proposing AutoBotCatcher, whose design is driven by the consideration that bots of the same botnet frequently communicate with each other and form communities. As such, the purpose of AutoBotCatcher is to dynamically analyze communities of IoT devices, formed according to their network traffic flows, to detect botnets. AutoBotCatcher exploits a permissioned Byzantine Fault Tolerant (BFT) blockchain, as a state transition machine that allows collaboration of a set of pre-identified parties without trust, in order to perform collaborative and dynamic botnet detection by collecting and auditing IoT devices' network traffic flows as blockchain transactions.In this paper, we focus on the design of the AutoBotCatcher by first defining the blockchain structure underlying AutoBot-Catcher, then discussing its components.Index Terms-Blockchain, Internet of Things (IoT), Security, P2P Botnets, Botnet Detection.5 For the rest of paper, we use the term botnet to refer malicious botnets.

show abstract

Decentralizing privacy enforcement for Internet of Things smart objects

Cited by 26 publications

References 34 publications

Current Research Trends in IoT Security: A Systematic Mapping Study

Current Research Trends in IoT Security: A Systematic Mapping Study

Hybrid-IoT: Hybrid Blockchain Architecture for Internet of Things - PoW Sub-Blockchains

AutoBotCatcher: Blockchain-Based P2P Botnet Detection for the Internet of Things

Contact Info

Product

Resources

About