Internet of things security

Chahid, Yassine; Benabdellah, Mohamed; Azizi, Abdelmalek

doi:10.1109/wits.2017.7934655

Cited by 42 publications

(19 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There have been several works that discussed IoT security and examined threats and attacks therein [ 34 , 37 , 104 , 105 , 106 , 107 , 108 ]. Many works, e.g., [ 32 , 44 , 109 , 110 , 111 , 112 , 113 , 114 ], categorize potential threats and attacks based on the different layers of an IoT architecture. Some of them (e.g., [ 30 , 115 ]) derive threats and attacks based on particular security issues e.g., identity, access control, trust, middleware and mobility.…”

Section: Threats and Attacksmentioning

confidence: 99%

Security Requirements for the Internet of Things: A Systematic Approach

Pal

Hitchens

Rabehaja

et al. 2020

Sensors

View full text Add to dashboard Cite

There has been a tremendous growth in the number of smart devices and their applications (e.g., smart sensors, wearable devices, smart phones, smart cars, etc.) in use in our everyday lives. This is accompanied by a new form of interconnection between the physical and digital worlds, commonly known as the Internet of Things (IoT). This is a paradigm shift, where anything and everything can be interconnected via a communication medium. In such systems, security is a prime concern and protecting the resources (e.g., applications and services) from unauthorized access needs appropriately designed security and privacy solutions. Building secure systems for the IoT can only be achieved through a thorough understanding of the particular needs of such systems. The state of the art is lacking a systematic analysis of the security requirements for the IoT. Motivated by this, in this paper, we present a systematic approach to understand the security requirements for the IoT, which will help designing secure IoT systems for the future. In developing these requirements, we provide different scenarios and outline potential threats and attacks within the IoT. Based on the characteristics of the IoT, we group the possible threats and attacks into five areas, namely communications, device/services, users, mobility and integration of resources. We then examine the existing security requirements for IoT presented in the literature and detail our approach for security requirements for the IoT. We argue that by adhering to the proposed requirements, an IoT system can be designed securely by achieving much of the promised benefits of scalability, usability, connectivity, and flexibility in a practical and comprehensive manner.

show abstract

Section: Threats and Attacksmentioning

confidence: 99%

Security Requirements for the Internet of Things: A Systematic Approach

Pal

Hitchens

Rabehaja

et al. 2020

Sensors

View full text Add to dashboard Cite

show abstract

“…This is a protocol where authentication is performed by a challenge and if the challenge is completed successfully the permission is granted to access the tag else permission is declined. This is effective in case of low power devices because other authentication mechanisms cannot be used for small power [17]. b) Malicious Insider People inside the organization are considered as the weakest links of the chain when it comes to security.…”

Section: Randomized Watermarking Filtering Scheme (Rwfs) For Iot Is Amentioning

confidence: 99%

Internet of things: security requirements, attacks and counter measures

Imdad

Jacob

Mahdin

et al. 2020

IJEECS

View full text Add to dashboard Cite

Internet of Things (IoT) is a network of connected and communicating nodes. Recent developments in IoT have led to advancements like smart home, industrial IoT and smart healthcare etc. This smart life did bring security challenges along with numerous benefits. Monitoring and control in IoT is done using smart phone and web browsers easily. There are different attacks being launched on IoT layers on daily basis and to ensure system security there are seven basic security requirements which must be met. Here we have used these requirements for classification and subdivided them on the basis of attacks, followed by degree of their severity, affected system components and respective countermeasures. This work will not only give guidelines regarding detection and removal of attacks but will also highlight the impact of these attacks on system, which will be a decision point to safeguard system from high impact attacks on priority basis.

show abstract

“…Until now, some authors tried to tackle the IoT security weak points by investigating in hardware solutions [29,30], while others suggested to solve the problem pinpointing to higher IoT layers, proposing innovative authentication methods included in MQTT, NFC [31], and smart card [32]. Above all, traditional defense mechanisms such as intrusion detection systems (IDSs) have been analyzed to further protect IoT devices.…”

Section: Related Workmentioning

confidence: 99%

Shielding IoT against Cyber‐Attacks: An Event‐Based Approach Using SIEM

López

Uribe

Cely

et al. 2018

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

Due to the growth of IoT (Internet of Things) devices in different industries and markets in recent years and considering the currently insufficient protection for these devices, a security solution safeguarding IoT architectures are highly desirable. An interesting perspective for the development of security solutions is the use of an event management approach, knowing that an event may become an incident when an information asset is affected under certain circumstances. The paper at hand proposes a security solution based on the management of security events within IoT scenarios in order to accurately identify suspicious activities. To this end, different vulnerabilities found in IoT devices are described, as well as unique features that make these devices an appealing target for attacks. Finally, three IoT attack scenarios are presented, describing exploited vulnerabilities, security events generated by the attack, and accurate responses that could be launched to help decreasing the impact of the attack on IoT devices. Our analysis demonstrates that the proposed approach is suitable for protecting the IoT ecosystem, giving an adequate protection level to the IoT devices.

show abstract

Internet of things security

Cited by 42 publications

References 11 publications

Security Requirements for the Internet of Things: A Systematic Approach

Security Requirements for the Internet of Things: A Systematic Approach

Internet of things: security requirements, attacks and counter measures

Shielding IoT against Cyber‐Attacks: An Event‐Based Approach Using SIEM

Contact Info

Product

Resources

About