Visible to the public IoTSM: An End-to-End Security Model for IoT Ecosystems

TitleIoTSM: An End-to-End Security Model for IoT Ecosystems
Publication TypeConference Paper
Year of Publication2019
AuthorsBugeja, Joseph, Vogel, Bahtijar, Jacobsson, Andreas, Varshney, Rimpu
Conference Name2019 IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom Workshops)
Date PublishedMarch 2019
ISBN Number978-1-5386-9151-9
KeywordsCollaboration, Companies, comparability, composability, Ecosystems, end-to-end IoT security, end-to-end security, end-to-end security model, Human Behavior, Internet of Things, Interviews, IoT, IoT devices, IoT ecosystems, IoT organizations, IoT practitioners, IoT security, IoT security model, IoTSM, Metrics, Pervasive Computing Security, pubcrawl, Resiliency, Scalability, science of security, secure development, security, security model, security of data, security practices, Software, software assurance, software assurance maturity model framework, telecommunication security

The Internet of Things (IoT) market is growing rapidly, allowing continuous evolution of new technologies. Alongside this development, most IoT devices are easy to compromise, as security is often not a prioritized characteristic. This paper proposes a novel IoT Security Model (IoTSM) that can be used by organizations to formulate and implement a strategy for developing end-to-end IoT security. IoTSM is grounded by the Software Assurance Maturity Model (SAMM) framework, however it expands it with new security practices and empirical data gathered from IoT practitioners. Moreover, we generalize the model into a conceptual framework. This approach allows the formal analysis for security in general and evaluates an organization's security practices. Overall, our proposed approach can help researchers, practitioners, and IoT organizations, to discourse about IoT security from an end-to-end perspective.

Citation Keybugeja_iotsm:_2019