Test-based risk assessment and security certification proposal for the Internet of Things

被引：0

作者：

Matheu Garcia, Sara N. ^{[1
]}

Hernandez-Ramos, Jose L. ^{[1
]}

Skarmeta, Antonio E. ^{[1
,2
]}

机构：

[1] Univ Murcia, Fac Comp Sci, Dept Informat & Commun Engn, Murcia, Spain

[2] Odin Solut SL, Murcia, Spain

来源：

2018 IEEE 4TH WORLD FORUM ON INTERNET OF THINGS (WF-IOT) | 2018年

基金：

欧盟地平线“2020”;

关键词：

Security Certification; Security Risk Assessment; CWSS; Common Criteria; IoT; Security Testing;

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

This work provides a design of a certification methodology for IoT, paying attention to the test-based risk assessment phase to empower testers with the ability to assess security solutions for large-scale IoT deployments. The resulting approach is an instantiation of the Risk-based Security Assessment presented by ETSI based on the ISO 31000, and it is built on top of different technologies and approaches for security testing and risk assessment adapted to the IoT landscape. The proposed methodology is intended to be used for the different experiments that are proposed in the scope of the ARMOUR project for assessing the fulfilment of several security aspects. It is expected to be used as a baseline to build a new security certification and labelling approach for IoT devices.

引用

页码：641 / 646

页数：6

共 50 条

[21] Internet of Medical Things Security Frameworks for Risk Assessment and Management: A Scoping Review
Svandova, Katerina
Smutny, Zdenek
[J]. JOURNAL OF MULTIDISCIPLINARY HEALTHCARE, 2024, 17 : 2281 - 2301
[22] Network Security Risk Investigation System Based on Internet of Things Technology
He, Qian
[J]. 2021 6TH INTERNATIONAL CONFERENCE ON SMART GRID AND ELECTRICAL AUTOMATION (ICSGEA 2021), 2021, : 397 - 400
[23] A risk assessment methodology for the Internet of Things
Sicari, Sabrina
Rizzardi, Alessandra
Miorandi, Daniele
Coen-Porisini, Alberto
[J]. COMPUTER COMMUNICATIONS, 2018, 129 : 67 - 79
[24] A proposal for an agent based security risk assessment in a Community Network
Saylani, Najib
[J]. Managing Information in the Digital Economy: Issues & Solutions, 2006, : 733 - 737
[25] Fuzzy Logic and Its Application in the Assessment of Information Security Risk of Industrial Internet of Things
Kerimkhulle, Seyit
Dildebayeva, Zhulduz
Tokhmetov, Akylbek
Amirova, Akzhibek
Tussupov, Jamalbek
Makhazhanova, Ulzhan
Adalbek, Alibek
Taberkhan, Roman
Zakirova, Alma
Salykbayeva, Alua
[J]. SYMMETRY-BASEL, 2023, 15 (10):
[26] AHP-Based Network Security Situation Assessment for Industrial Internet of Things
Yi, Junkai
Guo, Lin
[J]. ELECTRONICS, 2023, 12 (16)
[27] Security of internet of things based on cryptographic algorithm
Mittal, Sonam
Singh, Soni
Balakumaran, D.
Hemalatha, K.
[J]. INTERNATIONAL JOURNAL OF ELECTRONIC SECURITY AND DIGITAL FORENSICS, 2024, 16 (01) : 28 - 39
[28] A Security Architecture for Internet of Things Based on Blockchain
Yang, Wei
Wang, Hao
Wan, Yadong
Cao, Yuanlong
Zhang, Zhiming
Chen, Shaolong
[J]. BLOCKCHAIN AND TRUSTWORTHY SYSTEMS, BLOCKSYS 2019, 2020, 1156 : 363 - 368
[29] Biometric security management based on Internet of Things
Sesha Vidhya, S.
Shanthi, K.G.
Keerthana, S.
Nisha, P.
Monisha, H.
Nandhini Devi, G.
[J]. Materials Today: Proceedings, 2023, 80 : 3204 - 3207
[30] Security of the Internet of Things Based on Game Algorithm
Yi, Yue-e
[J]. INTERNATIONAL JOURNAL OF ONLINE ENGINEERING, 2018, 14 (08) : 80 - 93

← 1 2 3 4 5 →