Regresar

Security Risk Analysis in IoT Systems through Factor Identification over IoT Devices

Abstract:

IoT systems contribute to digital transformation through the development of smart concepts. However, the IoT has also generated new security challenges that require security tools to be adapted, such as risk analysis methodologies. With this in mind, the purpose of our study is based on the following question: Which factors of IoT devices should be considered within risk assessment methodologies? We have addressed our study with a 4-phase design-research methodology (DRM) that allows us, based on systematic literature review, to experiment and draw upon expert judgment; as a final product, we obtain a risk assessment methodology based on the characteristics of IoT devices. At the end of this study, we establish seven main constructs—Organization, Risk Behaviors, Dependency, Attack Surface, Susceptibility, Severity and Uncertainty—over which security risk in IoT systems can be evaluated.

Año de publicación:

2022

Keywords:

  • Risk analysis
  • Attack graphs
  • IoT security
  • Security modeling

Fuente:

googlegoogle
scopusscopus

Tipo de documento:

Article

Estado:

Acceso abierto

Áreas de conocimiento:

  • Red informática
  • Ciencias de la computación

Áreas temáticas:

  • Ciencias de la computación
  • Programación informática, programas, datos, seguridad
  • Métodos informáticos especiales

Contribuidores:

Sang Guun YooSang Guun Yoo
Jhonattan J. Barriga A.Jhonattan J. Barriga A.
Roberto Omar AndradeRoberto Omar Andrade
Iván Ortiz-GarcésIván Ortiz-Garcés
Barriga J.J.A.Barriga J.J.A.