| Title | IoT Metrics and Automation for Security Evaluation |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Setzler, Thomas, Mountrouidou, Xenia |
| Conference Name | 2021 IEEE 18th Annual Consumer Communications Networking Conference (CCNC) |
| Keywords | Automation, Internet of Things, IoT, Metrics, pubcrawl, research and development, security, security metrics, Standards, Time measurement, Time to market |
| Abstract | Internet of Things (IoT) devices are ubiquitous, with web cameras, smart refrigerators, and digital assistants appearing in homes, offices, and public spaces. However, these devices are lacking in security measures due to their low time to market and insufficient funding for security research and development. In order to improve the security of IoTs, we have defined novel security metrics based on generic IoT characteristics. Furthermore, we have developed automation for experimentation with IoT devices that results to repeatable and reproducible calculations of security metrics within a realistic IoT testbed. Our results demonstrate that repeatable IoT security measurements are feasible with automation. They prove quantitatively intuitive hypotheses. For example, an large number of inbound / outbound network connections contributes to higher probability of compromise or measuring password strength leads to a robust estimation of IoT security. |
| DOI | 10.1109/CCNC49032.2021.9369533 |
| Citation Key | setzler_iot_2021 |
IoT Metrics and Automation for Security Evaluation