scholarly journals A Framework for Malicious Traffic Detection in IoT Healthcare Environment

Sensors ◽  
2021 ◽  
Vol 21 (9) ◽  
pp. 3025
Author(s):  
Faisal Hussain ◽  
Syed Ghazanfar Abbas ◽  
Ghalib A. Shah ◽  
Ivan Miguel Pires ◽  
Ubaid U. Fayyaz ◽  
...  
Keyword(s):  
Open Source ◽  
Human Life ◽  
Cyber Attacks ◽  
Smart Devices ◽  
Use Case ◽  
Context Aware ◽  
Iot Security ◽  
Healthcare Environment ◽  
Data Generator ◽  
Iot Devices

The Internet of things (IoT) has emerged as a topic of intense interest among the research and industrial community as it has had a revolutionary impact on human life. The rapid growth of IoT technology has revolutionized human life by inaugurating the concept of smart devices, smart healthcare, smart industry, smart city, smart grid, among others. IoT devices’ security has become a serious concern nowadays, especially for the healthcare domain, where recent attacks exposed damaging IoT security vulnerabilities. Traditional network security solutions are well established. However, due to the resource constraint property of IoT devices and the distinct behavior of IoT protocols, the existing security mechanisms cannot be deployed directly for securing the IoT devices and network from the cyber-attacks. To enhance the level of security for IoT, researchers need IoT-specific tools, methods, and datasets. To address the mentioned problem, we provide a framework for developing IoT context-aware security solutions to detect malicious traffic in IoT use cases. The proposed framework consists of a newly created, open-source IoT data generator tool named IoT-Flock. The IoT-Flock tool allows researchers to develop an IoT use-case comprised of both normal and malicious IoT devices and generate traffic. Additionally, the proposed framework provides an open-source utility for converting the captured traffic generated by IoT-Flock into an IoT dataset. Using the proposed framework in this research, we first generated an IoT healthcare dataset which comprises both normal and IoT attack traffic. Afterwards, we applied different machine learning techniques to the generated dataset to detect the cyber-attacks and protect the healthcare system from cyber-attacks. The proposed framework will help in developing the context-aware IoT security solutions, especially for a sensitive use case like IoT healthcare environment.

scholarly journals Security Risk Measurement for Information Leakage in IoT-Based Smart Homes from a Situational Awareness Perspective

Sensors ◽  
2019 ◽  
Vol 19 (9) ◽  
pp. 2148 ◽  
Author(s):  
Mookyu Park ◽  
Haengrok Oh ◽  
Kyungho Lee
Keyword(s):  
Smart Home ◽  
Situational Awareness ◽  
Personal Information ◽  
Human Life ◽  
Information Leakage ◽  
Security Threats ◽  
Security Risk ◽  
Iot Security ◽  
Home Based ◽  
Iot Devices

Internet-of-Things (IoT) is a technology that is extensively being used in various fields. Companies like Samsung, LG, and Apple are launching home appliances that use IoT as a part of their smart home business. Currently, Intelligent Things which combine artificial intelligence (AI) and IoT are being developed. Most of these devices are configured to collect and respond to human behavior (motion, voice, etc.) through built-in sensors. If IoT devices do not ensure high security, personal information could be leaked. This paper describes the IoT security threats that can cause information leakage from a hierarchical viewpoint of cyberspace. In addition, because these smart home-based IoT devices are closely related to human life, considering social damage is a problem. To overcome this, we propose a framework to measure the risk of IoT devices based on security scenarios that can occur in a smart home.

scholarly journals IoT-based Application of Information Security Triad

2021 ◽  
Vol 15 (24) ◽  
pp. 61-76
Author(s):  
Mana Saleh Al Reshan
Keyword(s):  
Information Security ◽  
Smart Home ◽  
Cyber Attacks ◽  
Security And Privacy ◽  
Smart Devices ◽  
Exponential Increase ◽  
Operational Capabilities ◽  
Smart Tv ◽  
Iot Devices ◽  
Smart Home Appliances

Information Security is the foremost concern for IoT (Internet of things) devices and applications. Since the advent of IoT, its applications and devices have experienced an exponential increase in numerous applications which are utilized. Nowadays we people are becoming smart because we started using smart devices like a smartwatch, smart TV, smart home appliances. These devices are part of the IoT devices. The IoT device differs widely in capacity storage, size, computational power, and supply of energy. With the rapid increase of IoT devices in different IoT fields, information security, and privacy are not addressed well. Most IoT devices having constraints in computational and operational capabilities are a threat to security and privacy, also prone to cyber-attacks. This study presents a CIA triad-based information security implementation for the four-layer architecture of the IoT devices. An overview of layer-wise threats to the IoT devices and finally suggest CIA triad-based security techniques for securing the IoT devices.

scholarly journals Creating the Internet of Augmented Things: An Open-Source Framework to Make IoT Devices and Augmented and Mixed Reality Systems Talk to Each Other

Sensors ◽  
2020 ◽  
Vol 20 (11) ◽  
pp. 3328 ◽  
Author(s):  
Óscar Blanco-Novoa ◽  
Paula Fraga-Lamas ◽  
Miguel A. Vilar-Montesinos ◽  
Tiago M. Fernández-Caramés
Keyword(s):  
Open Source ◽  
Mixed Reality ◽  
Normal Operation ◽  
The Internet ◽  
Full Potential ◽  
Use Case ◽  
Smart Power ◽  
Operation Conditions ◽  
Heterogeneous Technologies ◽  
Iot Devices

Augmented Reality (AR) and Mixed Reality (MR) devices have evolved significantly in the last years, providing immersive AR/MR experiences that allow users to interact with virtual elements placed on the real-world. However, to make AR/MR devices reach their full potential, it is necessary to go further and let them collaborate with the physical elements around them, including the objects that belong to the Internet of Things (IoT). Unfortunately, AR/MR and IoT devices usually make use of heterogeneous technologies that complicate their intercommunication. Moreover, the implementation of the intercommunication mechanisms requires involving specialized developers with have experience on the necessary technologies. To tackle such problems, this article proposes the use of a framework that makes it easy to integrate AR/MR and IoT devices, allowing them to communicate dynamically and in real time. The presented AR/MR-IoT framework makes use of standard and open-source protocols and tools like MQTT, HTTPS or Node-RED. After detailing the inner workings of the framework, it is illustrated its potential through a practical use case: a smart power socket that can be monitored and controlled through Microsoft HoloLens AR/MR glasses. The performance of such a practical use case is evaluated and it is demonstrated that the proposed framework, under normal operation conditions, enables to respond in less than 100 ms to interaction and data update requests.

scholarly journals IoT Security: Penetration Testing of White-label Cloud-based IoT Camera Compromising Personal Data Privacy

2020 ◽  
Vol 12 (5) ◽  
pp. 29-40
Author(s):  
Marlon Intal Tayag ◽  
Francisco Napalit ◽  
Arcely Napalit
Keyword(s):  
Surveillance System ◽  
Data Privacy ◽  
Manufacturing Industry ◽  
Personal Data ◽  
Cyber Attacks ◽  
Smart Devices ◽  
The Internet ◽  
Iot Security ◽  
Penetration Testing ◽  
Label Product

The Internet is driving force on how we communicate with one another, from posting messages and images to Facebook or “tweeting” your activities from your vacation. Today it is being used everywhere, now imagine a device that connects to the internet sends out data based on its sensors, this is the Internet-ofThings, a connection of objects with a plethora of sensors. Smart devices as they are commonly called, are invading our homes. With the proliferation of cheap Cloud-based IoT Camera use as a surveillance system to monitor our homes and loved ones right from the palm of our hand using our smartphones. These cameras are mostly white-label product, a process in which the product comes from a single manufacturer and bought by a different company where they are re-branded and sold with their own product name, a method commonly practice in the retail and manufacturing industry. Each Cloud-based IoT cameras sold are not properly tested for security. The problem arises when a hacker, hacks into the Cloud-based IoT Camera sees everything we do, without us knowing about it. Invading our personal digital privacy. This study focuses on the vulnerabilities found on White-label Cloud-based IoT Camera on the market specifically on a Chinese brand sold by Shenzhen Gwelltimes Technology. How this IoT device can be compromised and how to protect our selves from such cyber-attacks.

scholarly journals Preventing MQTT Vulnerabilities Using IoT-Enabled Intrusion Detection System

Sensors ◽  
2022 ◽  
Vol 22 (2) ◽  
pp. 567
Author(s):  
Muhammad Husnain ◽  
Khizar Hayat ◽  
Enrico Cambiaso ◽  
Ubaid U. Fayyaz ◽  
Maurizio Mongelli ◽  
...  
Keyword(s):  
Intrusion Detection ◽  
Intrusion Detection System ◽  
Communication Protocol ◽  
Detection System ◽  
Communication Technologies ◽  
Cyber Attacks ◽  
Iot Security ◽  
Iot Applications ◽  
Iot Devices ◽  
Main Component

The advancement in the domain of IoT accelerated the development of new communication technologies such as the Message Queuing Telemetry Transport (MQTT) protocol. Although MQTT servers/brokers are considered the main component of all MQTT-based IoT applications, their openness makes them vulnerable to potential cyber-attacks such as DoS, DDoS, or buffer overflow. As a result of this, an efficient intrusion detection system for MQTT-based applications is still a missing piece of the IoT security context. Unfortunately, existing IDSs do not provide IoT communication protocol support such as MQTT or CoAP to validate crafted or malformed packets for protecting the protocol implementation vulnerabilities of IoT devices. In this paper, we have designed and developed an MQTT parsing engine that can be integrated with network-based IDS as an initial layer for extensive checking against IoT protocol vulnerabilities and improper usage through a rigorous validation of packet fields during the packet-parsing stage. In addition, we evaluate the performance of the proposed solution across different reported vulnerabilities. The experimental results demonstrate the effectiveness of the proposed solution for detecting and preventing the exploitation of vulnerabilities on IoT protocols.

scholarly journals Internet of Things in Smart City Environments

2019 ◽  
Vol 8 (3) ◽  
pp. 7917-7921
Keyword(s):  
Network Security ◽  
Internet Of Things ◽  
Smart City ◽  
Paradigm Shift ◽  
Building Blocks ◽  
Smart Devices ◽  
The Internet ◽  
Iot Security ◽  
City Environment ◽  
Iot Devices

With the advent of smart devices, a huge paradigm shift is observed in the way the users define service quality. Further, these devices or Internet of Things (IoT) devices as they are generally addressed, have acted as catalyst for comfort and connectivity and are building blocks of Smart City environment. With limited thought related to security is involved during the deployment of such devices, they offer a dangerous environment of opportunity to the attackers from the internet; which not only jeopardize network security, bus also the privacy of the users. Hence, it is of utmost importance to address the security concerns in smart city environment. This paper attempts to study the current IoT technologies deployed in a smart-city environment along with its vulnerabilities and possible solutions to improve IoT security. An approach is made to study the various vulnerabilities available with the IoT devices deployed in the smart city setup, various motivation of an attacker and the analyse some of the recent attacks witnessed by IoT devices. A few possible solutions for mitigation are suggested in this paper. The findings of the paper can be implemented in any network of IoT devices

scholarly journals Threats and Corrective Measures for IoT Security with Observance of Cybercrime: A Survey

2021 ◽  
Vol 2021 ◽  
pp. 1-30
Author(s):  
Sita Rani ◽  
Aman Kataria ◽  
Vishal Sharma ◽  
Smarajit Ghosh ◽  
Vinod Karar ◽  
...  
Keyword(s):  
Data Transfer ◽  
Smart Cities ◽  
Human Life ◽  
Fog Computing ◽  
Vital Role ◽  
Smart Devices ◽  
Iot Security ◽  
Blockchain Technology ◽  
Corrective Measures

Internet of Things (IoT) is the utmost assuring framework to facilitate human life with quality and comfort. IoT has contributed significantly to numerous application areas. The stormy expansion of smart devices and their credence for data transfer using wireless mechanics boost their susceptibility to cyberattacks. Consequently, the cybercrime rate is increasing day by day. Hence, the study of IoT security threats and possible corrective measures can benefit researchers in identifying appropriate solutions to deal with various challenges in cybercrime investigation. IoT forensics plays a vital role in cybercrime investigations. This review paper presents an overview of the IoT framework consisting of IoT architecture, protocols, and technologies. Various security issues at each layer and corrective measures are also discussed in detail. This paper also presents the role of IoT forensics in cybercrime investigation in various domains like smart homes, smart cities, automated vehicles, and healthcare. The role of advanced technologies like artificial intelligence, machine learning, cloud computing, edge computing, fog computing, and blockchain technology in cybercrime investigation is also discussed. Lastly, various open research challenges in IoT to assist cybercrime investigation are explained to provide a new direction for further research.

scholarly journals Predicting Internet of Things (IOT) Security and Privacy Risks – A Proposal Model: توقع مخاطر أمن وخصوصية إنترنت الأشياء (IOT) – نموذج مقترح بحثي

2021 ◽  
Vol 5 (3) ◽  
pp. 133-112
Author(s):  
Awad Saad Al-Qahtani, Mohammad Ayoub Khan Awad Saad Al-Qahtani, Mohammad Ayoub Khan
Keyword(s):  
Internet Of Things ◽  
Security Management ◽  
Cyber Attacks ◽  
Security Requirements ◽  
Security And Privacy ◽  
The Internet ◽  
Security Risks ◽  
Iot Security ◽  
Iot Devices ◽  
The Internet Of Things

The Internet of things (IOT) users lack awareness of IOT security infrastructure to handle the risks including Threats, attack and penetration associated with its use. IOT devices are main targets for cyber-attacks due to variable personally identifiable information (PII) stored and transmit in the cyber centers. The security risks of the Internet of Things aimed to damage user's security and privacy. All information about users can be collected from their related objects which are stored in the system or transferred through mediums among diverse smart objects and may exposed to exposed dangerous of attacks and threats if it lack authentication so there are essential need to make IOT security requirements as important part of its efficient implementation. These requirements include; availability, accountability, authentication, authorization, privacy and confidentiality, Integrity and Non-repudiation. The study design is a survey research to investigate the visibility of the proposed model of security management for IOT uses, the security risks of IOT devices, and the changes IOT technology on the IT infrastructure of IOT users through answering of the research questionnaires. This work proposes a model of security management for IOT to predict IOT security and privacy threats, protect IOT users from any unforeseen dangers, and determine the right security mechanisms and protocols for IOT security layers, as well as give the most convenient security mechanisms. Moreover, for enhancing the performance of IOT networks by selecting suitable security mechanisms for IOT layers to increase IOT user's security satisfaction.

scholarly journals Different Dimensions of IOT Security

2020 ◽  
Vol 8 (5) ◽  
pp. 860-863
Keyword(s):  
Intrusion Detection System ◽  
Detection System ◽  
Cyber Attacks ◽  
Security And Privacy ◽  
Security Threats ◽  
Iot Security ◽  
Different Types ◽  
Different Dimensions ◽  
Iot Devices ◽  
Privacy Issues

IOT is wirelessly connecting things to the internet using sensors, RFID’s and remotely accessing and managing them over our phone or through our voice. IOT uses various communication protocols such as Zigbee, 6LowPan, Bluetooth and has bi directional communication for exchange of information. The database for IOT is cloud which is also vulnerable to security threats. The increasing amount of popularity of IoT and its pervasive usage has made it more recurrent to prominent cyber-attacks such as botnet attack, IoT ransom ware, DOS attack, RFID hack. The challenges faced by IoT are to stop hackers from stealing data, having unattended access to the device and performing malicious activities. There are many techniques which can be used to secure IoT devices such as using a secure encrypted Wi-Fi network, using digital signature for authenticity, updating to latest patches, installing Intrusion Detection System. We’ll also be assessing various IoT devices and threats associated with them in real time environment and the level of harm these threats can cause to the device if they are not properly mitigated or eradicated. In this paper we’ll also be addressing different types of risks associated with different IOT devices and approaches to solve the security and privacy issues

scholarly journals Home Automation Using Packet Tracer and ESP8266

2021 ◽  
Vol 21 ◽  
pp. 84-96
Author(s):  
Sucheta Gupta ◽  
Sushil Lekhi
Keyword(s):  
Energy Conservation ◽  
Smart Home ◽  
Closed Loop ◽  
Human Life ◽  
Smart Devices ◽  
Raspberry Pi ◽  
Home Automation ◽  
Packet Tracer ◽  
Basic Need ◽  
Iot Devices

The technology has been growing from day to day in human life. The basic need of human to lead his/her life comfortably is a home. A home with updated latest technology which means a smart home. In such a scenario, there is a need to have an endeavour to have everything at the push of a button away, and more importantly, automated. Home Automation is such an endeavour, in which, all the electrical appliances present at home are connected to each other, having interactions with sensors placed at strategic positions in a closed loop manner to perform meagre tasks automatically, leaving less burden on the humans. With this project we are promoting the fact that Home Automation can greatly contribute to energy conservation too. This paper gives the basic idea use cisco packet tracer to implement smart home. Cisco implemented (IoT) functionalities in the latest version of the platform, and now it is possible to add all the smart devices, sensors, actuators, and devices, which simulate microcontrollers like Arduino or Raspberry Pi to the network. All IoT devices can be run on generic programs or modified by Java, Python or Blocky programming them. This makes Cisco Packet Tracer a perfect method to construct functional simulations for IoT.

Sign in / Sign up

Export Citation Format

Share Document