A Holistic Analysis of Internet of Things (IoT) Security: Principles, Practices, and New Perspectives-Reference-Cited by-同舟云学术

A Holistic Analysis of Internet of Things (IoT) Security: Principles, Practices, and New Perspectives

Published:2024-01-24 Issue:2 Volume:16 Page:40
ISSN:1999-5903
Container-title:Future Internet
language:en
Short-container-title:Future Internet

Author:

Hossain Mahmud¹,Kayas Golam²,Hasan Ragib³,Skjellum Anthony⁴,Noor Shahid⁵,Islam S. M. Riazul⁶^ORCID

Affiliation:

1. Department of Private Certificate Authority, Amazon Web Services (AWS), Herndon, VA 20171, USA

2. Department of Cybersecurity & Privacy Group, Comcast Crop., Philadelphia, PA 19103, USA

3. Department of Computer Science, University of Alabama at Birmingham, Birmingham, AL 35294, USA

4. Department of Computer Science and Engineering, University of Tennessee at Chattanooga, Chattanooga, TN 37403, USA

5. Department of Computer Science, Northern Kentucky University, Highland Heights, KY 41099, USA

6. School of Natural and Computing Sciences, University of Aberdeen, Aberdeen AB24 3FX, UK

Abstract

Driven by the rapid escalation of its utilization, as well as ramping commercialization, Internet of Things (IoT) devices increasingly face security threats. Apart from denial of service, privacy, and safety concerns, compromised devices can be used as enablers for committing a variety of crime and e-crime. Despite ongoing research and study, there remains a significant gap in the thorough analysis of security challenges, feasible solutions, and open secure problems for IoT. To bridge this gap, we provide a comprehensive overview of the state of the art in IoT security with a critical investigation-based approach. This includes a detailed analysis of vulnerabilities in IoT-based systems and potential attacks. We present a holistic review of the security properties required to be adopted by IoT devices, applications, and services to mitigate IoT vulnerabilities and, thus, successful attacks. Moreover, we identify challenges to the design of security protocols for IoT systems in which constituent devices vary markedly in capability (such as storage, computation speed, hardware architecture, and communication interfaces). Next, we review existing research and feasible solutions for IoT security. We highlight a set of open problems not yet addressed among existing security solutions. We provide a set of new perspectives for future research on such issues including secure service discovery, on-device credential security, and network anomaly detection. We also provide directions for designing a forensic investigation framework for IoT infrastructures to inspect relevant criminal cases, execute a cyber forensic process, and determine the facts about a given incident. This framework offers a means to better capture information on successful attacks as part of a feedback mechanism to thwart future vulnerabilities and threats. This systematic holistic review will both inform on current challenges in IoT security and ideally motivate their future resolution.

Publisher

MDPI AG

Link

https://www.mdpi.com/1999-5903/16/2/40/pdf

Reference201 articles.

1. An Internet of Things-based health prescription assistant and its security system design;Hossain;Future Gener. Comput. Syst.,2018

2. Type-2 fuzzy ontology-aided recommendation systems for IoT-based healthcare;Ali;Comput. Commun.,2018

3. The IoT: Exciting possibilities for bettering lives: Special application scenarios;Islam;IEEE Consum. Electron. Mag.,2016

4. The internet of things for health care: A comprehensive survey;Islam;IEEE Access,2015

5. Insecurity by design: Today’s IoT device security problem;Engineering,2016

Cited by 6 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Assessing the Interplay of Financial Development, Human Capital, Democracy, and Industry 5.0 in Environmental Dynamics;Sustainability;2024-08-09

2. A comprehensive review of energy efficient routing protocols for query driven wireless sensor networks;F1000Research;2024-06-04

3. Enhancing IoT Security: Optimizing Anomaly Detection through Machine Learning;Electronics;2024-05-31

4. The Future of Digital Forensic Investigations: Keeping the Pace with Technological Advancements;2024 47th MIPRO ICT and Electronics Convention (MIPRO);2024-05-20

5. Securing Web Data and Privacy in AIoT Systems;Advances in Web Technologies and Engineering;2024-05-16