TY - GEN
T1 - IoE Security Threats and You
AU - Ryoo, Jungwoo
AU - Kim, Soyoung
AU - Cho, Junsung
AU - Kim, Hyoungshick
AU - Tjoa, Simon
AU - Derobertis, Christopher
N1 - Funding Information:
The authors would like to thank IBM for funding this research through its IBM Faculty Award. The financial support by the Austrian Federal Ministry of Science, Research and Economy and the National Foundation for Research, Technology and Development is also gratefully acknowledged. This work was also supported by ITRC (IITP-2017-2015-0-00403). We also thank Ryan Leirvik and Aaron Carreras at Grimmco. com for sharing their insights and experiences with Howdy Neighbor: an IoT Capture The Flag (CTF) competition they organized [30].
Funding Information:
ACKNOWLEDGMENT The authors would like to thank IBM for funding this research through its IBM Faculty Award. The financial support by the Austrian Federal Ministry of Science, Research and Economy and the National Foundation for Research, Technology and Development is also gratefully acknowledged.This work was also supported by ITRC (IITP-2017-2015-0-00403).
Publisher Copyright:
© 2017 IEEE.
PY - 2018/6/21
Y1 - 2018/6/21
N2 - Internet of Everything (IoE) is a newly emerging trend especially in homes. Marketing forces towards smart homes are also accelerating the spread of IoE devices in households. An obvious danger of rapid adoption of these gadgets is that many of them lack controls for protecting the privacy and security of end users from attacks designed to disrupt lives and incur financial losses. Our research goal for this paper is to develop an IoE threat model geared specifically for home users who are often unaware of the privacy and security threats which the IoE appliances pose. Our ultimate goal is to propose an effective solution to alerting users of imminent IoE security threats and offering actionable steps to mitigate them through an intuitive and friendly user interface design. There have been ample security research on individual elements of IoE. In particular, there are many publications on Internet of Things (IoT) security. What differentiates our research from the existing IoT works is that we are treating IoT as a component of an IoE ecosystem and developing our threat model in the more comprehensive context of how other pieces of the equation, such as people and data as well as processes fit together to result in formidable security threats.
AB - Internet of Everything (IoE) is a newly emerging trend especially in homes. Marketing forces towards smart homes are also accelerating the spread of IoE devices in households. An obvious danger of rapid adoption of these gadgets is that many of them lack controls for protecting the privacy and security of end users from attacks designed to disrupt lives and incur financial losses. Our research goal for this paper is to develop an IoE threat model geared specifically for home users who are often unaware of the privacy and security threats which the IoE appliances pose. Our ultimate goal is to propose an effective solution to alerting users of imminent IoE security threats and offering actionable steps to mitigate them through an intuitive and friendly user interface design. There have been ample security research on individual elements of IoE. In particular, there are many publications on Internet of Things (IoT) security. What differentiates our research from the existing IoT works is that we are treating IoT as a component of an IoE ecosystem and developing our threat model in the more comprehensive context of how other pieces of the equation, such as people and data as well as processes fit together to result in formidable security threats.
UR - http://www.scopus.com/inward/record.url?scp=85050555288&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85050555288&partnerID=8YFLogxK
U2 - 10.1109/ICSSA.2017.28
DO - 10.1109/ICSSA.2017.28
M3 - Conference contribution
AN - SCOPUS:85050555288
T3 - Proceedings - 2017 International Conference on Software Security and Assurance, ICSSA 2017
SP - 13
EP - 19
BT - Proceedings - 2017 International Conference on Software Security and Assurance, ICSSA 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 3rd International Conference on Software Security and Assurance, ICSSA 2017
Y2 - 24 July 2017 through 25 July 2017
ER -