A taxonomy of security and privacy requirements for the Internet of Things (IoT)

IEEE International Conference on Industrial Engineering and Engineering Management

Volumn 2015-January, Issue , 2014, Pages 1244-1248

  Alqassem, Israa ^a   Svetinovic, Davor ^a  

^a KHALIFA UNIVERSITY   (United Arab Emirates)

Author keywords

Internet of Things; privacy; requirements engineering; security

Indexed keywords

DATA PRIVACY; INTERNET; NETWORK SECURITY; REQUIREMENTS ENGINEERING; TAXONOMIES;

HETEROGENEOUS SYSTEMS; INTERNET OF THING (IOT); QUALITY ATTRIBUTES; SECURITY; SECURITY AND PRIVACY; SECURITY ATTACKS; SECURITY MECHANISM; SYSTEM DEVELOPMENT;

INTERNET OF THINGS;

EID: 84988258905     PISSN: 21573611     EISSN: 2157362X     Source Type: Conference Proceeding    
DOI: 10.1109/IEEM.2014.7058837     Document Type: Conference Paper

References (26)

1. L. Atzori, A. Iera, and G. Morabito. The internet of things: A survey. Computer Networks, 54(15):2787-2805, Oct. 2010.
2. A. Bhargav-Spantzel, A. Squicciarini, and E. Bertino. Trust negotiation in identity management. Security Privacy, IEEE, 5(2):55-63, March 2007.
3. M. Buettner, B. Greenstein, A. Sample, J. R. Smith, and D. Wetherall. Revisiting smart dust with RFID sensor networks. In Proc. 7th ACM Workshop on Hot Topics in Networks (Hotnets-VII), Calgary, Alberta, Canada, 2008.
4. G. Chen, H. Chen, L. Xie, G. Song, and T. Zhuang. An identity authentication scheme in wireless peer-to-peer network. In Communication Technology (ICCT), 2010 12th IEEE International Conference on, pages 473-476, Nov 2010.
5. D. G. Firesmith. Analyzing and specifying reusable security requirements. In Proc. Solid Freeform Fabrication Sym, pages 507-514, 2003.
6. R. George and S. Sabitha. Data anonymization and integrity checking in cloud computing. In Computing, Communications and Networking Technologies (ICCCNT),2013 Fourth International Conference on, pages 1-5, July 2013.
7. F. S. Grodzinsky and H. T. Tavani. Privacy in "the Cloud": Applying Nissenbaum's Theory of Contextual Integrity. SIGCAS Comput. Soc., 41(1):38-47, Oct. 2011.
8. Y. Kirsal and O. Gemikonakli. Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal. In Cybernetic Intelligent Systems, 2008. CIS 2008. 7th IEEE International Conference on, pages 1-6, Sept 2008.
9. X. Li, Z. Xuan, and L. Wen. Research on the architecture of trusted security system based on the internet of things. In Intelligent Computation Technology and Automation (ICICTA), 2011 International Conference on, volume 2, pages 1172-1175, March 2011.
10. J. Liu, Y. Xiao, and C. Chen. Authentication and access control in the internet of things. In Distributed Computing Systems Workshops (ICDCSW), 2012 32nd International Conference on, pages 588-592, June 2012.
11. F. Mattern and C. Floerkemeier. From the Internet of Computers to the Internet of Things, volume 6462 of LNCS, pages 242-259. Springer, 2010.
12. D. Miorandi, S. Sicari, F. De Pellegrini, and I. Chlamtac. Internet of things: Vision, applications and research challenges. Ad Hoc Networks, 10(7):1497-1516, Sept. 2012.
13. B. Mukherjee, L. Heberlein, and K. Levitt. Network intrusion detection. Network, IEEE, 8(3):26-41, May 1994.
14. J. A. Onieva, J. Zhou, and J. Lopez. Multiparty nonrepudiation: A survey. ACM Comput. Surv., 41(1):5:1-5:43, Jan. 2009.
15. S. Raza, L. Wallgren, and T. Voigt. Svelte: Real-time intrusion detection in the internet of things. Ad Hoc Networks, 11(8):2661-2674, 2013.
16. R. Roman, J. Zhou, and J. Lopez. On the features and challenges of security and privacy in distributed internet of things. Computer Networks, 57(10):2266-2279, July 2013.
17. A. M. S. Said, A. W. Ibrahim, A. Soua, and H. Afifi. Dynamic aggregation protocol for wireless sensor networks. 2013 IEEE 27th International Conference on Advanced Information Networking and Applications (AINA), 0:356-361, 2013.
18. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control models. Computer, 29(2):38-47, Feb 1996.
19. H. Suleiman, K. Ahmed, N. Zafar, E. Phillips, D. Svetinovic, and O. de Weck. Inter-domain analysis of smart grid domain dependencies using domain-link matrices. Smart Grid, IEEE Transactions on, 3(2):692-709, 2012.
20. A. Sutcliffe and P. Sawyer. Requirements elicitation: Towards the unknown unknowns. In Requirements Engineering Conference (RE), 2013 21st IEEE International, pages 92-104, 2013.
21. F. Thiesse, C. Floerkemeier, M. Harrison, F. Michahelles, and C. Roduner. Technology, standards, and real-world deployments of the epc network. Internet Computing, IEEE, 13(2):36-43, March 2009.
22. A. Vapen, D. Byers, and N. Shahmehri. 2-clickauth optical challengeresponse authentication. In Availability, Reliability, and Security, 2010. ARES '10 International Conference on, pages 79-86, Feb 2010.
23. Q. Wang, C. Wang, K. Ren, W. Lou, and J. Li. Privacy as contextual integrity. Washington Law Review, 2004.
24. Q. Wang, C. Wang, K. Ren, W. Lou, and J. Li. Enabling public auditability and data dynamics for storage security in cloud computing. Parallel and Distributed Systems, IEEE Transactions on, 22(5):847-859, May 2011.
25. R. H. Weber. Internet of things-new security and privacy challenges. Computer Law & Security Review, 26(1):23-30, 2010.
26. Wikipedia. Heartbleed-Wikipedia, the free encyclopedia.