On the Security and Privacy of Internet of Things Architectures and Systems

Proceedings - 2015 International Workshop on Secure Internet of Things, SIoT 2015

Volumn , Issue , 2016, Pages 49-57

  Vasilomanolakis, Emmanouil ^a,b   Daubert, Jörg ^a,b   Luthra, Manisha ^a   Gazis, Vangelis ^b   Wiesmaier, Alex ^b,c   Kikiras, Panayotis ^b  

^a DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

^b AGT Group (RandD) GmbH   (Germany)

^c DARMSTADT UNIVERSITY OF APPLIED SCIENCES   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER PRIVACY; INTERNET; SURVEYS;

END USERS; INTERNET OF THING (IOT); INTERNET OF THINGS ARCHITECTURES; IOT ARCHITECTURES; SECURITY AND PRIVACY;

INTERNET OF THINGS;

EID: 84964677884     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SIOT.2015.9     Document Type: Conference Paper

References (57)

1. Mohamed Abomhara and Geir M. Koien. Security and Privacy in the Internet of Things : Current Status and Open Issues. In Privacy and Security in Mobile Systems (PRISMS), pages 1-8. IEEE, 2014.
2. Ahmad W Atamli and Andrew Martin. Threat-Based Security Analysis for the Internet of Things. In Secure Internet of Things (SIoT), pages 35-43. IEEE, 2014.
3. Luigi Atzori, Antonio Iera, and Giacomo Morabito. The Internet of Things: A survey. Computer Networks, 54(15):2787-2805, October 2010.
4. Sachin Babar, Parikshit Mahalle, Antonietta Stango, Neeli Prasad, and Ramjee Prasad. Proposed security model and threat taxonomy for the Internet of Things (IoT). In International Conference on Network Security & Applications (CNSA), volume 89, pages 420-429. Springer Berlin Heidelberg, 2010.
5. Martin Bauer and Sebastian Lange. Enabling Things to Talk. Springer Berlin Heidelberg, Berlin, Heidelberg, 2013.
6. BETaaS Consortium. Building the environment for the things as a service. http://www.betaas.eu/, 2012. [11. Feb. 2014].
7. BETaaS Consortium. D1.4.2 - TaaS Reference Model. http://www.betaas.eu/docs/deliverables/BETaaS%20-%20D1.4.2%20-%20TaaS%20Reference%20Model%20v1.0.pdf, October 2013. [11 Mar. 2014].
8. Riccardo Bonetto, Nicola Bui, Vishwas Lakkundi, Alexis Olivereau, Alexandru Serbanati, and Michele Rossi. Secure communication for smart IoT objects: Protocol stacks, use cases and practical examples. 2012 IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, WoWMoM 2012 - Digital Proceedings, 2012.
9. Jan Camenisch and Els Van Herreweghen. Design and implementation of the idemix anonymous credential system. In Vijayalakshmi Atluri, editor, Proceedings of the 9th ACM Conference on Computer and Communications Security, CCS 2002, Washington, DC, USA, November 18-22, 2002, pages 21-30. ACM, 2002.
10. David Chaum. Blind signatures for untraceable payments. In David Chaum, Ronald L. Rivest, and Alan T. Sherman, editors, Advances in Cryptology: Proceedings of CRYPTO '82, Santa Barbara, California, USA, August 23-25, 1982., pages 199-203. Plenum Press, New York, 1982.
11. Simone Cirani, Gianluigi Ferrari, and Luca Veltri. Enforcing security mechanisms in the IP-based internet of things: An algorithmic overview. Algorithms, 6(2):197-226, 2013.
12. P. Congdon, B. Aboba, A. Smith, G. Zorn, and J. Roese. IEEE 802.1X Remote Authentication Dial In User Service (RADIUS) Usage Guidelines. RFC 3580 (Informational), September 2003. Updated by RFC 7268.
13. BETaaS Consortium. BETaaS Building the Environment for the Things as a Service D2 . 2 . 2 - Specification of the extended capabilities of the platform. pages 1-61, 2014.
14. IoT-A Consortium. Iot-a unified requirements. http://www.iot-a.eu/public/requirements/. [31 Jan. 2014].
15. Joerg Daubert, Alexander Wiesmaier, and Panayotis Kikiras. A view on privacy & trust in iot. In IOT/CPS-Security Workshop, IEEE International Conference on Communications, ICC 2015, London, GB, June 08-12, 2015, page to appear. IEEE, 2015.
16. T. Dierks and E. Rescorla. The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard), August 2008. Updated by RFCs 5746, 5878, 6176.
17. Roger Dingledine, Nick Mathewson, and Paul F. Syverson. Tor: The second-generation onion router. In Matt Blaze, editor, Proceedings of the 13th USENIX Security Symposium, August 9-13, 2004, San Diego, CA, USA, pages 303-320. USENIX, 2004.
18. Cynthia Dwork and Jing Lei. Differential privacy and robust statistics. In Michael Mitzenmacher, editor, Proceedings of the 41st Annual ACM Symposium on Theory of Computing, STOC 2009, Bethesda, MD, USA, May 31 - June 2, 2009, pages 371-380. ACM, 2009.
19. European Parliament and Council of the European Union. On the protection of individuals with regard to the processing of personal data and on the free movement of such data. Official Journal, L(281):0031-0050, 1995.
20. Kai Fischer, Jurgen Gessner, and Steffen Fries. Secure Identifiers and Initial Credential Bootstrapping for IoT@Work. 2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, pages 781-786, July 2012.
21. G A N Gang, L U Zeyong, and Jiang Jun. Internet of Things Security Analysis. In Internet Technology and Applications (iTAP), pages 1-4. IEEE, 2011.
22. Lingling Gao and Xuesong Bai. A unified perspective on the factors influencing consumer acceptance of internet of things technology. Asia Pacific Journal of Marketing and Logistics, 26(2):211-231, 2014.
23. Vangelis Gazis, Carlos Garcia Cordero, Emmanouil Vasilomanolakis, Panayotis Kikiras, and Alex Wiesmaier. Security Perspectives for Collaborative Data Acquisition in the Internet of Things. In International Conference on Safety and Security in Internet of Things. Springer, 2014.
24. Jayavardhana Gubbi, Rajkumar Buyya, Slaven Marusic, and Marimuthu Palaniswami. Internet of Things (IoT): A vision, architectural elements, and future directions. Future Generation Computer Systems, 29(7):1645-1660, September 2013.
25. Robert Gwadera. D5.2.1 Privacy and Security Framework. 2013.
26. Alexander Iliev and Sean W. Smith. Protecting client privacy with trusted computing at the server. IEEE Security & Privacy, 3(2):20-28, 2005.
27. IoT-A Consortium. IoT-A - Internet of Things Architecture. http://www.iot-a.eu/. [27 Jan. 2014].
28. IoT@Work Consortium. D1.2 - Final framework architecture specification. https://www.iot-at-work.eu/data/D1.3-IoT@Work-Architecture-final-v1.0-submitted.pdf, July 2013. [20 Jul. 2014].
29. Audun Jøsang, Roslan Ismail, and Colin Boyd. A survey of trust and reputation systems for online service provision. Decision Support Systems, 43(2):618-644, 2007.
30. Vivek Kapoor, Vivek Sonny Abraham, and Ramesh Singh. Elliptic curve cryptography. ACM Ubiquity, 9(20):20-26, 2008.
31. S. Kent and R. Atkinson. Security Architecture for the Internet Protocol. RFC 2401 (Proposed Standard), November 1998. Obsoleted by RFC 4301, updated by RFC 3168.
32. Rafiullah Khan, Sarmad Ullah Khan, Rifaqat Zaheer, and Shahid Khan. Future internet: The internet of things architecture, possible applications and key challenges. In 10th International Conference on Frontiers of Information Technology, FIT, pages 257-260. IEEE, 2012.
33. Oleg Logvinov, Bruce Kraemer, Chuck Adams, Juergen Heiles, Gary Stuebing, Mary Lynne Nielsen, and Brenda Mancuso. Standard for an Architectural Framework for the Internet of Things ( IoT ) IEEE P2413 Webinar Panelists. pages 1-12, 2014.
34. Ashwin Machanavajjhala, Daniel Kifer, Johannes Gehrke, and Muthuramakrishnan Venkitasubramaniam. L-diversity: Privacy beyond k-anonymity. TKDD, 1(1), 2007.
35. Anthéa Mayzaud, Rémi Badonnel, and Isabelle Chrisment. Monitoring and Security for the Internet of Things. In International Conference on Autonomous Infrastructure, Management, and Security, pages 37-40. Springer, 2013.
36. Carlo Maria Medaglia and Alexandru Serbanati. An overview of privacy and security issues in the internet of things. In The Internet of Things, pages 389-395. Springer, 2010.
37. Daniele Miorandi, Sabrina Sicari, Francesco De Pellegrini, and Imrich Chlamtac. Internet of things: Vision, applications and research challenges. Ad Hoc Networks, 10(7):1497-1516, September 2012.
38. Huansheng Ning, Hong Liu, and Laurence T Yang. Cyberentity Security in the Internet of Things. Computer, 46(4):46-53, 2013.
39. OpenIoT Consortium. OPENIoT D2.3 Detailed Architecture and Proof-of-Concept Specifications. http://openiot.eu/?q=node/49, 2013.
40. OpenIoT Consortium. OPENIoT project description. http://www.openiot.eu/, 2013.
41. Andreas Pfitzmann and Marit Köhntopp. Anonymity, unobservability, and pseudonymity - A proposal for terminology. In Hannes Federrath, editor, Designing Privacy Enhancing Technologies, International Workshop on Design Issues in Anonymity and Unobservability, Berkeley, CA, USA, July 25-26, 2000, Proceedings, volume 2009 of Lecture Notes in Computer Science, pages 1-9. Springer, 2000.
42. R Roman, P Najera, and J Lopez. Securing the internet of things. Computer, 44(9):51-58, 2011.
43. Rodrigo Roman, Jianying Zhou, and Javier Lopez. On the features and challenges of security and privacy in distributed internet of things. Computer Networks, 57(10):2266-2279, July 2013.
44. Sadeghi, Ahmad-Reza, Christian Wachsmann, and Michael Waidner. Security and privacy challenges in industrial internet of things. In Annual Design Automation Conference, page 54. ACM, 2015.
45. Alexander Salinas, Yosra Ben Saied, and Dissemination Level. Internet-of-Things Architecture Concepts and Solutions for Privacy and Security in the Resolution Infrastructure. (257521), 2013.
46. Günter Schäfer. Security in fixed and wireless networks - an introduction to securing data communications. Wiley, 2003.
47. Sabrina Sicari, Alessandra Rizzardi, Luigi Alfredo Grieco, and Alberto Coen-Porisini. Security, privacy and trust in internet of things: The road ahead. Computer Networks, 76:146-164, 2015.
48. Jennifer G. Steiner, B. Clifford Neuman, and Jeffrey I. Schiller. Kerberos: An authentication service for open network systems. In Proceedings of the USENIX Winter Conference. Dallas, Texas, USA, January 1988, pages 191-202. USENIX Association, 1988.
49. H Sundmaeker, P Guillemin, and P Friess. Vision and challenges for realising the Internet of Things. Number March. 2010.
50. Hui Suo, Jiafu Wan, Caifeng Zou, and Jianqi Liu. Security in the internet of things: a review. In Computer Science and Electronics Engineering (ICCSEE), 2012 International Conference on, volume 3, pages 648-651. IEEE, 2012.
51. Latanya Sweeney. k-anonymity: A model for protecting privacy. International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems, 10(5):557-570, 2002.
52. Specific Targeted. D2 . 3 OpenIoT Detailed Architecture and Proof-of-Concept Specifications. 2011.
53. Jari Veijalainen, Denis Kozlov, and Yasir Ali. Security and Privacy Threats in IoT Architectures. In Proceedings of the 7th International Conference on Body Area Networks, number International Conference on Body Area Networks, pages 256-262. ACM, 2012.
54. Rolf H. Weber. Internet of Things - New security and privacy challenges. Computer Law & Security Review, 26(1):23-30, January 2010.
55. Xiaokui Xiao and Yufei Tao. M-invariance: towards privacy preserving re-publication of dynamic datasets. In Chee Yong Chan, Beng Chin Ooi, and Aoying Zhou, editors, Proceedings of the ACM SIGMOD International Conference on Management of Data, Beijing, China, June 12-14, 2007, pages 689-700. ACM, 2007.
56. Andrea Zanella, Nicola Bui, Angelo P Castellani, Lorenzo Vangelista, and Michele Zorzi. Internet of things for smart cities. IEEE Internet of Things Journal, 2014.
57. Zhi-kai Zhang, Michael Cheng, Yi Cho, and Shiuhpyng Shieh. Emerging Security Threats and Countermeasures in IoT. In ACM Symposium on Information, Computer and Communications Security, pages 1-6. ACM, 2015.