Skip to main content

Security risk assessment in Internet of Things systems

Nurse, Jason R. C., Creese, Sadie, De Roure, David (2017) Security risk assessment in Internet of Things systems. IEEE IT Professional (IT Pro), 19 (5). pp. 20-26. ISSN 1520-9202. E-ISSN 1941-045X. (doi:10.1109/MITP.2017.3680959)

PDF - Author's Accepted Manuscript
Download (579kB) Preview
[img]
Preview
Official URL
http://dx.doi.org/10.1109/MITP.2017.3680959

Abstract

Information security risk assessment methods have served us well over the past two decades. They have provided a tool for organizations and governments to use in protecting themselves against pertinent risks. As the complexity, pervasiveness, and automation of technology systems increases and cyberspace matures, particularly with the Internet of Things (IoT), there is a strong argument that we will need new approaches to assess risk and build trust. The challenge with simply extending existing assessment methodologies to IoT systems is that we could be blind to new risks arising in such ecosystems. These risks could be related to the high degrees of connectivity present or the coupling of digital, cyber-physical, and social systems. This article makes the case for new methodologies to assess risk in this context that consider the dynamics and uniqueness of the IoT while maintaining the rigor of best practice in risk assessment.

Item Type: Article
DOI/Identification number: 10.1109/MITP.2017.3680959
Subjects: Q Science
T Technology
Divisions: Faculties > Sciences > School of Computing > Security Group
Faculties > Sciences > School of Engineering and Digital Arts
Depositing User: Jason Nurse
Date Deposited: 03 Jul 2018 16:54 UTC
Last Modified: 13 Jan 2020 13:45 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/67476 (The current URI for this page, for reference purposes)
Nurse, Jason R. C.: https://orcid.org/0000-0003-4118-1680
  • Depositors only (login required):

Downloads

Downloads per month over past year