Lack of Systematic Approach to Security of IoT Context Sharing Platforms

• URL: http://arxiv.org/abs/2407.05290v1
• Date: Sun, 7 Jul 2024 07:11:15 GMT
• Title: Lack of Systematic Approach to Security of IoT Context Sharing Platforms
• Authors: Mohammad Goudarzi, Arash Shaghaghi, Simon Finn, Sanjay Jha,
• Abstract summary: We report on a lack of systematic approach to the security of IoT context-sharing platforms. We propose the need for a methodological and systematic alternative to evaluate the existing solutions and develop secure-by-design' solutions.
• Score: 4.13734678653472
• License: http://creativecommons.org/licenses/by-nc-nd/4.0/
• Abstract: IoT context-sharing platforms are an essential component of today's interconnected IoT deployments with their security affecting the entire deployment and the critical infrastructure adopting IoT. We report on a lack of systematic approach to the security of IoT context-sharing platforms and propose the need for a methodological and systematic alternative to evaluate the existing solutions and develop `secure-by-design' solutions. We have identified the key components of a generic IoT context-sharing platform and propose using MITRE ATT&CK for threat modelling of such platforms.

Related papers

• Towards Threat Modelling of IoT Context-Sharing Platforms [4.098759138493994]
  We propose a framework for threat modelling and security analysis of a generic IoT context-sharing solution. We identify significant security challenges in the design of IoT context-sharing platforms. Our threat modelling provides an in-depth analysis of the techniques and sub-techniques adversaries may use to exploit these systems.
  arXiv  Detail & Related papers  (2024-08-22T02:41:06Z)
• Securing the Open RAN Infrastructure: Exploring Vulnerabilities in Kubernetes Deployments [60.51751612363882]
  We investigate the security implications of and software-based Open Radio Access Network (RAN) systems. We highlight the presence of potential vulnerabilities and misconfigurations in the infrastructure supporting the Near Real-Time RAN Controller (RIC) cluster.
  arXiv  Detail & Related papers  (2024-05-03T07:18:45Z)
• Differentiated Security Architecture for Secure and Efficient Infotainment Data Communication in IoV Networks [55.340315838742015]
  Negligence on the security of infotainment data communication in IoV networks can unintentionally open an easy access point for social engineering attacks. In particular, we first classify data communication in the IoV network, examine the security focus of each data communication, and then develop a differentiated security architecture to provide security protection on a file-to-file basis.
  arXiv  Detail & Related papers  (2024-03-29T12:01:31Z)
• IoT in the Cloud: Exploring Security Challenges and Mitigations for a Connected World [18.36339203254509]
  The Internet of Things (IoT) has seen remarkable advancements in recent years, leading to a paradigm shift in the digital landscape. IoT devices, inherently connected to the internet, are susceptible to various forms of attacks. IoT services often handle sensitive user data, which could be exploited by malicious actors or unauthorized service providers.
  arXiv  Detail & Related papers  (2024-02-01T05:55:43Z)
• Effective Intrusion Detection in Heterogeneous Internet-of-Things Networks via Ensemble Knowledge Distillation-based Federated Learning [52.6706505729803]
  We introduce Federated Learning (FL) to collaboratively train a decentralized shared model of Intrusion Detection Systems (IDS) FLEKD enables a more flexible aggregation method than conventional model fusion techniques. Experiment results show that the proposed approach outperforms local training and traditional FL in terms of both speed and performance.
  arXiv  Detail & Related papers  (2024-01-22T14:16:37Z)
• Classification of cyber attacks on IoT and ubiquitous computing devices [49.1574468325115]
  This paper provides a classification of IoT malware. Major targets and used exploits for attacks are identified and referred to the specific malware. The majority of current IoT attacks continue to be of comparably low effort and level of sophistication and could be mitigated by existing technical measures.
  arXiv  Detail & Related papers  (2023-12-01T16:10:43Z)
• A Survey of the Security Challenges and Requirements for IoT Operating Systems [0.0]
  The Internet of Things (IoT) is becoming an integral part of our modern lives as we converge towards a world surrounded by ubiquitous connectivity. The inherent complexity presented by the vast IoT ecosystem ends up in an insufficient understanding of individual system components and their interactions. There is a need for a unifying operating system (OS) that can act as a cornerstone regulating the development of stable and secure solutions.
  arXiv  Detail & Related papers  (2023-10-27T19:19:07Z)
• The Internet of Senses: Building on Semantic Communications and Edge Intelligence [67.75406096878321]
  The Internet of Senses (IoS) holds the promise of flawless telepresence-style communication for all human receptors' We elaborate on how the emerging semantic communications and Artificial Intelligence (AI)/Machine Learning (ML) paradigms may satisfy the requirements of IoS use cases.
  arXiv  Detail & Related papers  (2022-12-21T03:37:38Z)
• Machine and Deep Learning for IoT Security and Privacy: Applications, Challenges, and Future Directions [0.0]
  The integration of the Internet of Things (IoT) connects a number of intelligent devices with a minimum of human interference. Current security approaches can also be improved to protect the IoT environment effectively. Deep learning (DL)/ machine learning (ML) methods are essential to turn IoT systems protection from simply enabling safe contact between IoT systems to intelligence systems in security.
  arXiv  Detail & Related papers  (2022-10-24T19:02:27Z)
• National Access Points for Intelligent Transport Systems Data: From Conceptualization to Benefits Recognition and Exploitation [55.41644538483948]
  The European Union has proposed the development of a National Access Point (NAP) by each individual Member State. This paper aims to ascertain the role of a NAP within the ITS ecosystem, to investigate methodologies used in designing such platforms, and, through the drafting of an extended use case, showcase a NAP operational process and associate possible benefits with specific steps of it.
  arXiv  Detail & Related papers  (2020-10-14T17:13:00Z)
• IoT-Flock: An Open-source Framework for IoT Traffic Generation [1.3299946892361474]
  Traditional traffic generator tools are unable to generate the IoT specific protocols traffic. We propose an open-source framework which supports the two widely used IoT application layer protocols, i.e. Network and CoAP. We set up a real-time IoT smart home use case to manifest the applicability of the proposed framework.
  arXiv  Detail & Related papers  (2020-04-02T07:08:08Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.