A framework for automating security analysis of the internet of things. (1st April 2017)
- Record Type:
- Journal Article
- Title:
- A framework for automating security analysis of the internet of things. (1st April 2017)
- Main Title:
- A framework for automating security analysis of the internet of things
- Authors:
- Ge, Mengmeng
Hong, Jin B.
Guttmann, Walter
Kim, Dong Seong - Abstract:
- Abstract: The Internet of Things (IoT) is enabling innovative applications in various domains. Due to its heterogeneous and wide-scale structure, it introduces many new security issues. To address this problem, we propose a framework for modeling and assessing the security of the IoT and provide a formal definition of the framework. Generally, the framework consists of five phases: (1) data processing, (2) security model generation, (3) security visualization, (4) security analysis, and (5) model updates. Using the framework, we can find potential attack scenarios in the IoT, analyze the security of the IoT through well-defined security metrics, and assess the effectiveness of different defense strategies. The framework is evaluated via three scenarios, which are the smart home, wearable healthcare monitoring and environment monitoring scenarios. We use the analysis results to show the capabilities of the proposed framework for finding potential attack paths and mitigating the impact of attacks.
- Is Part Of:
- Journal of network and computer applications. Volume 83(2017)
- Journal:
- Journal of network and computer applications
- Issue:
- Volume 83(2017)
- Issue Display:
- Volume 83, Issue 2017 (2017)
- Year:
- 2017
- Volume:
- 83
- Issue:
- 2017
- Issue Sort Value:
- 2017-0083-2017-0000
- Page Start:
- 12
- Page End:
- 27
- Publication Date:
- 2017-04-01
- Subjects:
- Attack graphs -- Internet of things -- Security analysis -- Security modeling
Microcomputers -- Periodicals
Computer networks -- Periodicals
Application software -- Periodicals
Micro-ordinateurs -- Périodiques
Réseaux d'ordinateurs -- Périodiques
Logiciels d'application -- Périodiques
Application software
Computer networks
Microcomputers
Periodicals
004.05
004 - Journal URLs:
- http://www.sciencedirect.com/science/journal/10848045 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.jnca.2017.01.033 ↗
- Languages:
- English
- ISSNs:
- 1084-8045
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5021.410600
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 1340.xml