Asset-Driven Approach for Security Risk Assessment in IoT Systems

The growth of damage caused by security issues in IoT-based systems requires the definition of a rigorous methodology allowing risks assessment and protecting the system against them. In this work, we propose an approach that follows the security standards to identify and analyse the potential risks...

Full description

Saved in:
Bibliographic Details
Published inRisks and Security of Internet and Systems pp. 149 - 163
Main Authors Chehida, Salim, Baouya, Abdelhakim, Alonso, Diego Fernández, Brun, Paul-Emmanuel, Massot, Guillemette, Bozga, Marius, Bensalem, Saddek
Format Book Chapter
LanguageEnglish
Published Cham Springer International Publishing
SeriesLecture Notes in Computer Science
Subjects
Asset
Countermeasures
IoT
Risk assessment
Security objectives
Security requirements
Threat
Online AccessGet full text

Cover

More Information
Summary:The growth of damage caused by security issues in IoT-based systems requires the definition of a rigorous methodology allowing risks assessment and protecting the system against them. In this work, we propose an approach that follows the security standards to identify and analyse the potential risks. Our approach starts by specifying the system assets considering IoT domain model and the potential threats that might compromise them. Starting from the list of threats, we define the security objectives then technical requirements and countermeasures that can cover these objectives. We apply our approach to an IoT system for monitoring and control the management of the urban water cycle.
ISBN:3030688860
9783030688868
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-030-68887-5_9