Categorization of IoT services based on security requirements

Autor:	Ostroški, Dominik
Přispěvatelé:	Vuković, Marin
Jazyk:	chorvatština
Rok vydání:	2020
Předmět:	IoT DREAD procjena rizika Internet of Things services TECHNICAL SCIENCES. Computing TEHNIČKE ZNANOSTI. Računarstvo kategorizacija Internet of Things usluge interneta stvari risk assessment Internet stvari categorization
Popis:	Era Interneta stvari je već započela i to duboko mijenja način života ljudi. Iako Internet stvari pruža vrijedne prednosti, istovremeno se izlaže različitim vrstama sigurnosnih prijetnji u svakodnevnom životu. Prije pojave Internet stvari, većina sigurnosnih prijetnji bila je vezana samo uz curenje informacija i gubitak usluge. Danas uz Internet stvari, sigurnosne prijetnje su postale usko povezane sa životima ljudi pri čemu mogu izravno utjecati na fizičku sigurnost. Zaštita privatnosti u Internetu stvari postaje sve izazovnija zbog velikog broja informacija lako dostupnih preko mehanizama daljinskog pristupa. Najčešći napadi na privatnost korisnika su kopanje podataka, cyber špijunaža, prisluškivanje i praćenje. Mnoge sigurnosne prijetnje čine Internet stvari izuzetno zahtjevnim okruženjem sa strane sigurnosti. Iako broj napada na uređaje Interneta stvari raste, na tržište se i dalje plasiraju rješenja bez adekvatno riješenog problema sigurnosti i privatnosti, stoga je potrebno što prije razviti okvir za osiguranje Interneta stvari. U prvom poglavlju ovog rada opisane su neke od najčešće korištenih usluga Interneta stvari grupirane po području primjene. Nakon toga je za svaku od uslugu napravljena procjena rizika na osnovu DREAD modela te je na osnovu ocjene rizika prodložena sigurnosna kategorizacija usluga. Na kraju je dan prijedolg modela ocjenjivanja kako bi se usluge interneta stvari mogle svrstati u jednu od predloženih kategorija. The Internet of Things era has already begun and it is profoundly changing the way people live. Although the Internet of Things provides valuable benefits, it simultaneously exposes itself to different types of security threats in everyday life. Before the advent of the Internet of Things, most security threats were only related to information leaks and loss of service. Today with the Internet of Things, security threats have become closely linked to people’s lives where they can directly affect physical security. Protecting the privacy of the Internet of Things is becoming increasingly challenging due to the large amount of information readily available through remote access mechanisms. The most common attacks on user privacy are data digging, cyber espionage, eavesdropping and surveillance. Many security threats make the Internet of Things an extremely demanding security environment. Although the number of attacks on Internet of Things devices is growing, solutions are still being placed on the market without an adequately solved security and privacy problem, so it is necessary to develop a framework for securing the Internet of Things as soon as possible. The first chapter of this paper describes some of the most commonly used Internet of Things services grouped by are of application. After that, a risk assessment was made for each of the services based on the DREAD model, and based on the risk assessment, the security categorization of services was proposed. Finally, evaluation model is given so that IoT services can be classified into one of the proposed categories.
Databáze:	OpenAIRE
Externí odkaz:	https://explore.openaire.eu/search/publication?articleId=od______4131::ad34a8c8b5659e401753e9560b22b1e6 https://repozitorij.fer.unizg.hr/islandora/object/fer:8043 Zobrazit plný text záznamu