On the Security Threat of Abandoned and Zombie Cellular IoT Devices

2019 ◽  
Author(s):  
Gabor Soos ◽  
Pal Varga
Keyword(s):  
Security Threat ◽  
Iot Devices

scholarly journals A Threat Computation Model using a Markov Chain and Common Vulnerability Scoring System and its Application to Cloud Security

2019 ◽  
Vol 7 (1) ◽  
pp. 37-56 ◽  
Author(s):  
Ngoc Thuy Le ◽  
Doan B. Hoang
Keyword(s):  
Markov Chain ◽  
Scoring System ◽  
Cloud Security ◽  
Security Threats ◽  
Security Threat ◽  
Security Risks ◽  
Security Metrics ◽  
Novel Approach ◽  
Compliance Checking ◽  
Iot Devices

Securing cyber infrastructures has become critical because they are increasingly exposed to attackers while accommodating a huge number of IoT devices and supporting numerous sophisticated emerging applications. Security metrics are essential for assessing the security risks and making effective decisions concerning system security. Many security metrics rely on mathematical models, but are mainly based on empirical data, qualitative methods, or compliance checking, and this renders the outcome far from satisfactory. Computing the probability of an attack, or more precisely a threat that materialises into an attack, forms an essential basis for a quantitative security metric. This paper proposes a novel approach to compute the probability distribution of cloud security threats based on a Markov chain and Common Vulnerability Scoring System. Moreover, the paper introduces the method to estimate the probability of security attacks. The use of the new security threat model and its computation is demonstrated through their application to estimating the probabilities of cloud threats and types of attacks.

scholarly journals Lightweight Coap Based Authentication Scheme by Applying Two-Way Encryption for Secure Transmission

2020 ◽  
Vol 9 (6) ◽  
pp. 404``-412
Keyword(s):  
User Authentication ◽  
Mutual Authentication ◽  
Data Communication ◽  
Data Encryption ◽  
Security Threat ◽  
Authentication Mechanism ◽  
Iot Devices ◽  
Lightweight Authentication ◽  
Secure Authentication ◽  
Secure Transmission

With the widespread popularity of the Internet of Things (IoT), different sectors-based applications are increasingly developed. One of the most popular application layer protocols is the Constrained Application Protocol (CoAP), and the necessity of ensuring data security in this layer is crucial. Moreover, attackers target the vulnerabilities of IoT to gain access to the system, which leads to a security threat and violate privacy. Typically, user authentication and data encryption are applied for securing data communication over a public channel between two or more participants. However, most of the existing solutions use cryptography for achieving security, with the exception of high computation cost. Hence, these solutions fail to satisfy the resource-constrained characteristics of IoT devices. Therefore, a lightweight security mechanism is required for achieving both secure transmission and better performance. This paper proposes a Lightweight Authentication with Two-way Encryption for Secure Transmission in CoAP Protocol (LATEST) that provides a secure transmission between the server and IoT devices. This mutual authentication mechanism uses ROT 18 Cipher with XoR operation and 128-bit AES based encryption for securing the data transmission. The ROT18 Cipher is a monoalphabetic substitution cipher, which is a combination of ROT13 and ROT5. The proposed scheme employs symmetric encryption in both client and server for ensuring secure authentication and mutually confirm each other identity. In addition, the proposed LATEST scheme ensures confidentiality and integrity by being resistant to replay attacks, impersonation attacks, and modification attacks. The experimental evaluation demonstrates that the proposed LATEST scheme is lightweight and provides better security compared to the existing scheme.

scholarly journals Leaky Noise: New Side-Channel Attack Vectors in Mixed-Signal IoT Devices

2019 ◽  
pp. 305-339 ◽  
Author(s):  
Dennis R. E. Gnad ◽  
Jonas Krautter ◽  
Mehdi B. Tahoori
Keyword(s):  
Sampling Rate ◽  
Security Threat ◽  
Key Recovery ◽  
Mixed Signal ◽  
Online Systems ◽  
Iot Devices ◽  
Key Recovery Attack ◽  
Almost All ◽  
Digital Components ◽  
Leakage Assessment

Microcontrollers and SoC devices have widely been used in Internet of Things applications. This also brings the question whether they lead to new security threats unseen in traditional computing systems. In fact, almost all modern SoC chips, particularly in the IoT domain, contain both analog and digital components, for various sensing and transmission tasks. Traditional remote-accessible online systems do not have this property, which can potentially become a security vulnerability. In this paper we demonstrate that such mixed-signal components, namely ADCs, expose a new security threat that allows attackers with ADC access to deduce the activity of a CPU in the system. To prove the leakage, we perform leakage assessment on three individual microcontrollers from two different vendors with various ADC settings. After showing a correlation of CPU activity with ADC noise, we continue with a leakage assessment of modular exponentiation and AES. It is shown that for all of these devices, leakage occurs for at least one algorithm and configuration of the ADC. Finally, we show a full key recovery attack on AES that works despite of the limited ADC sampling rate. These results imply that even remotely accessible microcontroller systems should be equipped with proper countermeasures against power analysis attacks, or restrict access to ADC data.

scholarly journals Security Issues and Challenges in IoT Routing over Wireless Communication

2020 ◽  
Vol 9 (4) ◽  
pp. 1572-1580
Keyword(s):  
Wireless Network ◽  
Detection Methods ◽  
The Internet ◽  
Security Threat ◽  
Security Issues ◽  
Security Challenges ◽  
Interactive Nature ◽  
Iot Devices ◽  
High Level ◽  
The Internet Of Things

The participation of Internet devices in different communications through embedded technologies and the adaptive and interactive nature of each communication affects future development tools and applications. The majority of IoT devices are able to communicate over a wireless network, improving their usability and scalability quickly. But these usability improvements drew the attackers' attention to their personal advantages and created numerous security challenges for detection and protection. Because devices are exposed to the Internet to deliver services, they are particularly vulnerable to various threats to security and privacy.Therefore, a major concern on the Internet of Things (IoT) is the discovery of such abnormal activities that pose a security threat so that appropriate solutions can be provided with a high level of reliability. This paper will be based on a detailed overview of IoT wireless security issues and abnormal activity detection methods. It also provided an overview of the various anomaly detection models and security challenges for launching the IoT connection to the wireless network.

Heuristic vs Metaheuristic Method: Improvement of Spoofed Fingerprint Identification in IoT Devices

2019 ◽  
Vol 12 (3) ◽  
pp. 168
Author(s):  
Guruh Fajar Shidik ◽  
Edi Jaya Kusuma ◽  
Safira Nuraisha ◽  
Pulung Nurtantio Andono
Keyword(s):  
Fingerprint Identification ◽  
Iot Devices ◽  
Method Improvement

Bringing Security to The Smallest Embedded Systems

2017 ◽  
Author(s):  
JOSEPH YIU
Keyword(s):  
Internet Of Things ◽  
Embedded Systems ◽  
Low Cost ◽  
Security Requirements ◽  
The Internet ◽  
Security Measures ◽  
Significant Challenge ◽  
Iot Devices

The increasing need for security in microcontrollers Security has long been a significant challenge in microcontroller applications(MCUs). Traditionally, many microcontroller systems did not have strong security measures against remote attacks as most of them are not connected to the Internet, and many microcontrollers are deemed to be cheap and simple. With the growth of IoT (Internet of Things), security in low cost microcontrollers moved toward the spotlight and the security requirements of these IoT devices are now just as critical as high-end systems due to:

The Development of Intelligence Walking Stick for Elderly Health Care using IoT

2020 ◽  
Vol 9 (5) ◽  
pp. 1334-1338
Keyword(s):  
Health Care ◽  
Daily Living ◽  
The Elderly ◽  
Mean Value ◽  
Real Time System ◽  
Pressure Oxygen ◽  
Elderly Health ◽  
The Mean ◽  
Iot Devices ◽  
Walking Stick

Nowadays, Thailand is stepping into an aging society. This research purposes developing the intelligence walking stick for the elderly in terms of the health care system by applied the IoT devices and biometric sensors in a real-time system. The heart rate, blood pressure, oxygen saturation, and temperature were measured at the finger of the elderly that holding the intelligence walking stick. All data can monitor and display on mobile devices. The intelligence walking stick system was evaluated by twenty users who are five experts and fifteen elderly in Ratchaburi province. As a result of the mean value at 4.88 and 4.85 by experts and elderly, respectively. It could be said that the development of intelligence walking stick by using IoT can help and improve the daily living of the elderly at the highest level.

Provision of Security Services in Public Secondary Schools in Enugu East L.G.A. of Enugu State.

2019 ◽  
pp. 172-176
Author(s):  
Otegbulu M. I. ◽  
Ezeagu A. Agbo ◽  
Agbo Genevieve N.
Keyword(s):  
School Environment ◽  
School Administrators ◽  
Teaching Staff ◽  
Human Beings ◽  
Security Threat ◽  
Culture Of Learning ◽  
Learning And Teaching ◽  
Security Issues ◽  
Security Services ◽  
The Government

Security is pre-requisite for the development of human beings and the society. It is a pre-condition for the survival, development and advancement of individuals and groups. The school is an organization that needs to have a planned safety rules and regulations to protect it components so that the culture of learning and teaching is enhanced. Security threat within the school environment could hamper the peaceful atmosphere in the school, and disrupt academic exercises and panic among the personnel in the school. The government, security agents, parents, school administrators and the community has a lot of role to play to make school environment safe and conducive. However, security gadgets and apparatus should be provided to nip these issues in the bud, as well as train the teaching and non-teaching staff on security issues.

Sign in / Sign up

Export Citation Format

Share Document