Internet of Things challenges: A focus on security aspects

Sedrati, Anass; Mezrioui, Abdellatif

doi:10.1109/iacs.2017.7921973

Cited by 5 publications

(6 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Prior work in the IoT field is either too generic [34] or too specific to the kind of IoT or the brand of IoT device [32]. Alternatively, it focuses on aspects of IoT and leaves other aspects [35].…”

Section: Discussionmentioning

confidence: 99%

An IoT Analysis Framework: An Investigation of IoT Smart Cameras' Vulnerabilities

Alharbi

Aspinall²

2018

Living in the Internet of Things: Cybersecurity of the IoT - 2018

View full text Add to dashboard Cite

The significant increase in the number of applications that depend on Internet of Things concept is becoming more evident. It has been deployed in many areas in smart homes, smart cities and health monitoring applications. The means to secure these applications are slower than our growing dependence on them. The aim of this paper is to demonstrate the kinds of vulnerabilities that exist in home monitoring smart cameras and to demonstrate their effects on users' security and privacy, by proposing a threat model and a security and privacy analysis framework. The framework covers five major components of the smart camera system with a set of designed test cases. The framework is applied to five commodity smart cameras. Range of vulnerabilities are discovered with respect to the framework. The vulnerabilities discovered indicate that IoT devices continue to be shipped by vendors without putting enough effort on their security and with insufficient regard for the implications that they have on users' privacy. The work reported here has been part of the first author's MSc thesis [1].

show abstract

Section: Discussionmentioning

confidence: 99%

An IoT Analysis Framework: An Investigation of IoT Smart Cameras' Vulnerabilities

Alharbi

Aspinall²

2018

Living in the Internet of Things: Cybersecurity of the IoT - 2018

View full text Add to dashboard Cite

show abstract

“…Many other existing approaches (e.g., [ 161 , 162 , 163 , 164 ]) pose authorization, authentication, confidentiality, access control, trust and identity management as the core security requirements for an IoT system. In addition to these requirements, a few studies (e.g., [ 165 , 166 , 167 , 168 , 169 , 170 ]) discuss other general security requirements e.g., network security, application security, layer security, bootstrapping security, configuration, data integrity, firewalls, anti-virus and encryption functionality and secure routing. We consider these generic as such requirements are necessary for most, if not all, application areas.…”

Section: Iot Security Requirements: State Of the Artmentioning

confidence: 99%

Security Requirements for the Internet of Things: A Systematic Approach

Pal

Hitchens

Rabehaja

et al. 2020

Sensors

View full text Add to dashboard Cite

There has been a tremendous growth in the number of smart devices and their applications (e.g., smart sensors, wearable devices, smart phones, smart cars, etc.) in use in our everyday lives. This is accompanied by a new form of interconnection between the physical and digital worlds, commonly known as the Internet of Things (IoT). This is a paradigm shift, where anything and everything can be interconnected via a communication medium. In such systems, security is a prime concern and protecting the resources (e.g., applications and services) from unauthorized access needs appropriately designed security and privacy solutions. Building secure systems for the IoT can only be achieved through a thorough understanding of the particular needs of such systems. The state of the art is lacking a systematic analysis of the security requirements for the IoT. Motivated by this, in this paper, we present a systematic approach to understand the security requirements for the IoT, which will help designing secure IoT systems for the future. In developing these requirements, we provide different scenarios and outline potential threats and attacks within the IoT. Based on the characteristics of the IoT, we group the possible threats and attacks into five areas, namely communications, device/services, users, mobility and integration of resources. We then examine the existing security requirements for IoT presented in the literature and detail our approach for security requirements for the IoT. We argue that by adhering to the proposed requirements, an IoT system can be designed securely by achieving much of the promised benefits of scalability, usability, connectivity, and flexibility in a practical and comprehensive manner.

show abstract

“…While symmetric key and/or public key cryptography suites provide better security than alternatives, their high-power consumption is often a challenge. However, lightweight alternative frameworks can provide similar security standards on minimal hardware, on which additional research has been conducted [41,168,169]. Some studies have shown that Hybrid encryption models are the best for securing information robustness and confidentiality in data exchanges at optimal speeds, without having to sacrifice power consumption [8,57].…”

Section: Cryptography and Encryptionmentioning

confidence: 99%

“…The lack of universal standards for IoT devices has resulted in a largely heterodox field, which has spawned a complexity for developing cross-device security methods. Researchers [43,44] have suggested that the standardization of security protocols would be one form of mitigating risks which spawn from device nuances [36,41]. In lieu of a lack of standardization, some studies have suggested a lack of device to device communication at all to prevent cross-device communication vulnerabilities from arising [159].…”

Section: Standardizationmentioning

confidence: 99%

“…Authentication applies to all layers, to verify and identify devices prior to sending or receiving data [35] and user identity, using various techniques, including access controls [36][37][38][39]. Given the heterogeneous nature of the IoT environment, standardization of protocols across devices and networks can mitigate security threats [30,36,[40][41][42][43][44][45]. Addressing security countermeasures, including standardization, is a current open area of research for IoT.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Comprehensive and Systematic Survey on the Internet of Things: Security and Privacy Challenges, Security Frameworks, Enabling Technologies, Threats, Vulnerabilities and Countermeasures

et al. 2020

View full text Add to dashboard Cite

The Internet of Things (IoT) has experienced constant growth in the number of devices deployed and the range of applications in which such devices are used. They vary widely in size, computational power, capacity storage, and energy. The explosive growth and integration of IoT in different domains and areas of our daily lives has created an Internet of Vulnerabilities (IoV). In the rush to build and implement IoT devices, security and privacy have not been adequately addressed. IoT devices, many of which are highly constrained, are vulnerable to cyber attacks, which threaten the security and privacy of users and systems. This survey provides a comprehensive overview of IoT in regard to areas of application, security architecture frameworks, recent security and privacy issues in IoT, as well as a review of recent similar studies on IoT security and privacy. In addition, the paper presents a comprehensive taxonomy of attacks on IoT based on the three-layer architecture model; perception, network, and application layers, as well as a suggestion of the impact of these attacks on CIA objectives in representative devices, are presented. Moreover, the study proposes mitigations and countermeasures, taking a multi-faceted approach rather than a per layer approach. Open research areas are also covered to provide researchers with the most recent research urgent questions in regard to securing IoT ecosystem.

show abstract

Internet of Things challenges: A focus on security aspects

Cited by 5 publications

References 9 publications

An IoT Analysis Framework: An Investigation of IoT Smart Cameras' Vulnerabilities

An IoT Analysis Framework: An Investigation of IoT Smart Cameras' Vulnerabilities

Security Requirements for the Internet of Things: A Systematic Approach

A Comprehensive and Systematic Survey on the Internet of Things: Security and Privacy Challenges, Security Frameworks, Enabling Technologies, Threats, Vulnerabilities and Countermeasures

Contact Info

Product

Resources

About