A decade of research on patterns and architectures for IoT security

AbstractSecurity of the Internet of Things (IoT)-based Smart Systems involving sensors, actuators and distributed control loop is of paramount importance but very difficult to address. Security patterns consist of domain-independent time-proven security knowledge and expertise. How are they useful for developing secure IoT-based smart systems? Are there architectures that support IoT security? We aim to systematically review the research work published on patterns and architectures for IoT security (and privacy). Then, we want to provide an analysis on that research landscape to answer our research questions. We follow the well-known guidelines for conducting systematic literature reviews. From thousands of candidate papers initially found in our search process, we have systematically distinguished and analyzed thirty-six (36) papers that have been peer-reviewed and published around patterns and architectures for IoT security and privacy in the last decade (January 2010–December 2020). Our analysis shows that there is a rise in the number of publications tending to patterns and architectures for IoT security in the last three years. We have not seen any approach of applying systematically architectures and patterns together that can address security (and privacy) concerns not only at the architectural level, but also at the network or IoT devices level. We also explored how the research contributions in the primary studies handle the different issues from the OWASP Internet of Things (IoT) top ten vulnerabilities list. Finally, we discuss the current gaps in this research area and how to fill in the gaps for promoting the utilization of patterns for IoT security and privacy by design.

Download Full-text

Internet of Things: A Comprehensive Study on Machine Learning-based Intrusion Detection approaches

10.21467/proceedings.114.29 ◽

2021 ◽

Author(s):

Priyanka Gupta ◽

Lokesh Yadav ◽

Deepak Singh Tomar

Keyword(s):

Machine Learning ◽

Internet Of Things ◽

Intrusion Detection ◽

Real Time ◽

Detection System ◽

Research Work ◽

Security And Privacy ◽

Iot Security ◽

Advantages And Disadvantages ◽

Iot Devices

The Internet of Things (IoT) connects billions of interconnected devices that can exchange information with each other with minimal user intervention. The goal of IoT to become accessible to anyone, anytime, and anywhere. IoT has engaged in multiple fields, including education, healthcare, businesses, and smart home. Security and privacy issues have been significant obstacles to the widespread adoption of IoT. IoT devices cannot be entirely secure from threats; detecting attacks in real-time is essential for securing devices. In the real-time communication domain and especially in IoT, security and protection are the major issues. The resource-constrained nature of IoT devices makes traditional security techniques difficult. In this paper, the research work carried out in IoT Intrusion Detection System is presented. The Machine learning methods are explored to provide an effective security solution for IoT Intrusion Detection systems. Then discussed the advantages and disadvantages of the selected methodology. Further, the datasets used in IoT security are also discussed. Finally, the examination of the open issues and directions for future trends are also provided.

Download Full-text

Deep Learning-Based Security Behaviour Analysis in IoT Environments: A Survey

Security and Communication Networks ◽

10.1155/2021/8873195 ◽

2021 ◽

Vol 2021 ◽

pp. 1-13

Author(s):

Yawei Yue ◽

Shancang Li ◽

Phil Legg ◽

Fuzhong Li

Keyword(s):

Deep Learning ◽

Smart Home ◽

Ad Hoc ◽

Security Analysis ◽

Home Healthcare ◽

Security And Privacy ◽

Iot Security ◽

Privacy Concerns ◽

Iot Devices ◽

Primary Focus

Internet of Things (IoT) applications have been used in a wide variety of domains ranging from smart home, healthcare, smart energy, and Industrial 4.0. While IoT brings a number of benefits including convenience and efficiency, it also introduces a number of emerging threats. The number of IoT devices that may be connected, along with the ad hoc nature of such systems, often exacerbates the situation. Security and privacy have emerged as significant challenges for managing IoT. Recent work has demonstrated that deep learning algorithms are very efficient for conducting security analysis of IoT systems and have many advantages compared with the other methods. This paper aims to provide a thorough survey related to deep learning applications in IoT for security and privacy concerns. Our primary focus is on deep learning enhanced IoT security. First, from the view of system architecture and the methodologies used, we investigate applications of deep learning in IoT security. Second, from the security perspective of IoT systems, we analyse the suitability of deep learning to improve security. Finally, we evaluate the performance of deep learning in IoT system security.

Download Full-text

Security Issues in Fog Computing for Internet of Things

Advances in Computer and Electrical Engineering - Architecture and Security Issues in Fog Computing Applications ◽

10.4018/978-1-7998-0194-8.ch003 ◽

2020 ◽

pp. 53-63 ◽

Cited By ~ 2

Author(s):

D. N. Kartheek ◽

Bharath Bhushan

Keyword(s):

Cloud Computing ◽

Internet Of Things ◽

Fog Computing ◽

Security And Privacy ◽

Privacy Concerns ◽

Security Issues ◽

Privacy Measures ◽

Speed Up ◽

Iot Devices ◽

Privacy Issues

The inherent features of internet of things (IoT) devices, like limited computational power and storage, lead to a novel platform to efficiently process data. Fog computing came into picture to bridge the gap between IoT devices and data centres. The main purpose of fog computing is to speed up the computing processing. Cloud computing is not feasible for many IoT applications; therefore, fog computing is a perfect alternative. Fog computing is suitable for many IoT services as it has many extensive benefits such as reduced latency, decreased bandwidth, and enhanced security. However, the characteristics of fog raise new security and privacy issues. The existing security and privacy measures of cloud computing cannot be directly applied to fog computing. This chapter gives an overview of current security and privacy concerns, especially for the fog computing. This survey mainly focuses on ongoing research, security challenges, and trends in security and privacy issues for fog computing.

Download Full-text

The Future of Low-End Motes in the Internet of Things: A Prospective Paper

Electronics ◽

10.3390/electronics9010111 ◽

2020 ◽

Vol 9 (1) ◽

pp. 111 ◽

Cited By ~ 1

Author(s):

Daniel Oliveira ◽

Miguel Costa ◽

Sandro Pinto ◽

Tiago Gomes

Keyword(s):

Internet Of Things ◽

Reconfigurable Computing ◽

Sensor Nodes ◽

Security And Privacy ◽

The Internet ◽

Wireless Sensor Nodes ◽

Privacy Concerns ◽

Energy Needs ◽

Iot Devices ◽

The Internet Of Things

Undeniably, the Internet of Things (IoT) ecosystem continues to evolve at a breakneck pace, exceeding all growth expectations and ubiquity barriers. From sensor to cloud, this giant network keeps breaking technological bounds in several domains, and wireless sensor nodes (motes) are expected to be predominant as the number of IoT devices grows towards the trillions. However, their future in the IoT ecosystem still seems foggy, where several challenges, such as (i) device’s connectivity, (ii) intelligence at the edge, (iii) security and privacy concerns, and (iv) growing energy needs, keep pulling in opposite directions. This prospective paper offers a succinct and forward-looking review of recent trends, challenges, and state-of-the-art solutions of low-end IoT motes, where reconfigurable computing technology plays a key role in tomorrow’s IoT devices.

Download Full-text

Impact of Internet of Things in the Healthcare Industry

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.a2261.059120 ◽

2020 ◽

Vol 9 (1) ◽

pp. 2106-2114

Keyword(s):

Health Care ◽

Internet Of Things ◽

Research Work ◽

Security And Privacy ◽

Future Research ◽

Healthcare Industry ◽

Health Care Employees ◽

Iot Devices ◽

The Impact ◽

The Internet Of Things

The internet of things concept had infiltrated nearly every field of our life, however, its cutting edge impact in the healthcare industry has been momentous. With tremendous penetration of Mobile health, the functionality of IoT in the healthcare industry had drastically increased. In the research, a systemic literature review was conducted to study the impact of IoT applications in the healthcare industry by analyzing the current and future research work in the field, more focusing on security and privacy in health IoT devices and how it affects different levels of health care employees and consumers’ adoption towards IoT in the health care industry. The study reports research papers, which were included, based on the further filtering process by title, contents, and abstract. A total of 232 primary up-to-date studies were included in the review study. These papers were analyzed according to the research questions defined in the study.

Download Full-text

Predicting Internet of Things (IOT) Security and Privacy Risks – A Proposal Model: توقع مخاطر أمن وخصوصية إنترنت الأشياء (IOT) – نموذج مقترح بحثي

Journal of engineering sciences and information technology - مجلة العلوم الهندسية و تكنولوجيا المعلومات ◽

10.26389/ajsrp.q070621 ◽

2021 ◽

Vol 5 (3) ◽

pp. 133-112

Author(s):

Awad Saad Al-Qahtani, Mohammad Ayoub Khan Awad Saad Al-Qahtani, Mohammad Ayoub Khan

Keyword(s):

Internet Of Things ◽

Security Management ◽

Cyber Attacks ◽

Security Requirements ◽

Security And Privacy ◽

The Internet ◽

Security Risks ◽

Iot Security ◽

Iot Devices ◽

The Internet Of Things

The Internet of things (IOT) users lack awareness of IOT security infrastructure to handle the risks including Threats, attack and penetration associated with its use. IOT devices are main targets for cyber-attacks due to variable personally identifiable information (PII) stored and transmit in the cyber centers. The security risks of the Internet of Things aimed to damage user's security and privacy. All information about users can be collected from their related objects which are stored in the system or transferred through mediums among diverse smart objects and may exposed to exposed dangerous of attacks and threats if it lack authentication so there are essential need to make IOT security requirements as important part of its efficient implementation. These requirements include; availability, accountability, authentication, authorization, privacy and confidentiality, Integrity and Non-repudiation. The study design is a survey research to investigate the visibility of the proposed model of security management for IOT uses, the security risks of IOT devices, and the changes IOT technology on the IT infrastructure of IOT users through answering of the research questionnaires. This work proposes a model of security management for IOT to predict IOT security and privacy threats, protect IOT users from any unforeseen dangers, and determine the right security mechanisms and protocols for IOT security layers, as well as give the most convenient security mechanisms. Moreover, for enhancing the performance of IOT networks by selecting suitable security mechanisms for IOT layers to increase IOT user's security satisfaction.

Download Full-text

A Comprehensive Study on Internet of Things Security

Advances in Computer and Electrical Engineering - Advancing Consumer-Centric Fog Computing Architectures ◽

10.4018/978-1-5225-7149-0.ch004 ◽

2019 ◽

pp. 72-86 ◽

Cited By ~ 1

Author(s):

Manikandakumar Muthusamy ◽

Karthikeyan Periasamy

Keyword(s):

Internet Of Things ◽

Smart Cities ◽

Denial Of Service ◽

Critical Issue ◽

Security And Privacy ◽

The Internet ◽

Privacy Concerns ◽

Major Shift ◽

Iot Devices ◽

High Level

Internet of things is a growing technology with many business opportunities and risks. It is strongly believed that IoT will cause a major shift in people's lives similar to how the internet transformed the way people communicate and share information. IoT is becoming popular in the various domains such as smart health, smart cities, smart transport, and smart retail. The security and privacy concerns of IoT are crucial as it connects a large number of devices. Security is a more critical issue that certainly needs to be resolved with a high level of attention, as with an increasing number of users, there would be a need to manage their requests and check authenticity on the cloud-based pattern. Recently, a series of massive distributed denial-of-service attacks have occurred in IoT organizations. Such malicious attacks have highlighted the threats resulting from not enough security in IoT devices together with their overwhelming effects on the internet. This chapter provides an overview of the security attacks with regard to IoT technologies, protocols, and applications.

Download Full-text

The Internet of Things and its impact on the library

New Library World ◽

10.1108/nlw-12-2015-0093 ◽

2016 ◽

Vol 117 (3/4) ◽

pp. 289-292 ◽

Cited By ~ 10

Author(s):

Bruce Massis

Keyword(s):

Internet Of Things ◽

Literature Review ◽

Design Methodology ◽

Security And Privacy ◽

The Internet ◽

Content Type ◽

Privacy Concerns ◽

Potential Impact ◽

The Internet Of Things

Purpose – The purpose of this paper is to consider the Internet of Things (IOT) and its potential impact on libraries. Design/methodology/approach – This paper presents a literature review and a commentary on this topic that have been addressed by professionals, researchers and practitioners. Findings – In communicating the issues when comprehending the scope of the IOT, libraries need not succumb to the sometimes near-hysteria that surrounds the rhetoric regarding security and privacy. But, librarians must actively engage in the conversation and its subsequent actions to respond to patrons who use library networks and devices with calm, logical and transparent answers to those questions concerning what they are doing to ensure that security and privacy vulnerabilities are regularly addressed. Originality/value – The value in concentrating on this topic is to provide background and suggest several approaches to security and privacy concerns regarding the IOT.

Download Full-text

Honeypots for Internet of Things Research: An Effective Mitigation Tool

10.20944/preprints202109.0461.v1 ◽

2021 ◽

Author(s):

Shen Xin En ◽

Liu Si Ling ◽

Fan Cheng Hao

Keyword(s):

Internet Of Things ◽

Operating Systems ◽

Network Resources ◽

Iot Security ◽

Frequent Use ◽

Attack Patterns ◽

Iot Devices

In recent years, due to their frequent use and widespread use, IoT (Internet of Things) devices have become an attractive target for hackers. As a result of their limited network resources and complex operating systems, they are vulnerable to attacks. Using a honeypot can, therefore, be a very effective way of detecting malicious requests and capturing samples of exploits. The purpose of this article is to introduce honeypots, the rise of IoT devices, and how they can be exploited by attackers. Various honeypot ecosystems will be investigated further for capturing and analyzing information from attacks against these IoT devices. As well as how to leverage proactive strategies in terms of IoT security, it will provide insights on the attack vectors present in most IoT systems, along with understanding attack patterns.

Download Full-text

Internet of Things (IoT) Security and Privacy

Powering the Internet of Things With 5G Networks - Advances in Wireless Technologies and Telecommunication ◽

10.4018/978-1-5225-2799-2.ch010 ◽

2018 ◽

pp. 247-267

Author(s):

Muawya N. Al Dalaien ◽

Ameur Bensefia ◽

Salam A. Hoshang ◽

Abdul Rahman A. Bathaqili

Keyword(s):

Internet Of Things ◽

Security And Privacy ◽

The Internet ◽

Privacy Concern ◽

Computing Systems ◽

Iot Security ◽

Privacy Issues ◽

The Internet Of Things ◽

Security Concern ◽

The Way

In recent years the Internet of Things (IoT) has rapidly become a revolutionary technological invention causing significant changes to the way both corporate computing systems, and even household gadgets and appliances, are designed and manufactured. The aim of this chapter is to highlight the security and privacy issues that may affect the evolution of IoT technology. The privacy issues are discussed from customer perspectives: first, the IoT privacy concern where the privacy debates on IoT and the IoT privacy that reflected from users' perspective based on the examination of previous researches results. In addition, the different architectures for IoT are discussed. Finally, the chapter discusses the IoT security concern by collecting, analyzing and presenting the major IoT security concerns in the literature as well as providing some potential solutions to these concerns.

Download Full-text