Daniel O. Díaz López, Maria Blanco Uribe, Claudia P. Santiago Cely, Andrés F. Vega Torres, Nicolás Moreno Guataquira, Stefany J. Morón Castro, Pantaleone Nespoli, Félix Gómez Mármol
Wireless Communications and Mobile Computing, Special Issue on Security, Privacy, and Trust on Internet of Things, Volume 2018, Article ID 3029638, 18 pages
Publication year: 2018

Abstract

Due to the growth of IoT (Internet of Things) devices in different industries and markets in the recent years, and considering the currently insufficient protection for these devices, a security solution safeguarding IoT architectures is highly desirable. An interesting perspective for the development of security solutions is the use of an event management approach, knowing that an event may become an incident when an information asset is affected under certain circumstances. The paper at hand proposes a security solution based on the management of security events within IoT scenarios in order to accurately identify suspicious activities. To this end, different vulnerabilities found in IoT devices are described, as well as unique features that make these devices an appealing target for attacks. Finally, three IoT attack scenarios are presented, describing exploited vulnerabilities, security events generated by the attack and accurate responses that could be launched to help decreasing the impact of the attack on IoT devices. Our analysis demonstrates that the proposed approach is suitable for protecting the IoT ecosystem, giving an adequate protection level to the IoT devices.

Related Publications


TRIS: a Three-Rings IoT Sentinel to protect against cyber-threats

Conference
David E. Useche Peláez, Daniel O. Díaz López, Pantaleone Nespoli, Félix Gómez Mármol
Fifth International Conference on Internet of Things: Systems, Management and Security (IoTSMS 2018), Valencia, Spain
Publication year: 2018

RPiDS: Raspberry Pi IDS - A Fruitful Intrusion Detection System for IoT

Conference
Alessandro Sforzin, Félix Gómez Mármol, Mauro Conti, Jens-Matthias Bohli
13th IEEE International Conference on Advanced and Trusted Computing (ATC 2016), pp. 440-448, ISBN: 978-1-5090-2771-2, Toulouse, France
Publication year: 2016

Co-Authors

This work would not have been possible without the inestimable contribution of:

  • Daniel O. Díaz López
  • María A. Blanco Uribe
  • Claudia P. Santiago Cely
  • Andrés F. Vega Torres
  • Nicolás Moreno Guataquira
  • Stefany J. Morón Castro
  • Pantaleone Nespoli

Daniel O. Díaz López

Daniel O. Díaz López

Julio Garavito Colombian School of Engineering

Web

María A. Blanco Uribe

María A. Blanco Uribe

Julio Garavito Colombian School of Engineering

Web

Claudia P. Santiago Cely

Claudia P. Santiago Cely

Julio Garavito Colombian School of Engineering

Web

Andrés F. Vega Torres

Andrés F. Vega Torres

Julio Garavito Colombian School of Engineering

Web

Nicolás Moreno Guataquira

Nicolás Moreno Guataquira

Julio Garavito Colombian School of Engineering


Stefany J. Morón Castro

Stefany J. Morón Castro

Julio Garavito Colombian School of Engineering


Pantaleone Nespoli

Pantaleone Nespoli

University of Murcia

Web

Citation

Daniel O. Díaz López, Maria Blanco Uribe, Claudia P. Santiago Cely, Andrés F. Vega Torres, Nicolás Moreno Guataquira, Stefany J. Morón Castro, Pantaleone Nespoli, Félix Gómez Mármol, “Shielding IoT against cyber-attacks: An event-based approach using SIEM“, Wireless Communications and Mobile Computing, Special Issue on Security, Privacy, and Trust on Internet of Things, Volume 2018, Article ID 3029638, 18 pages, 2018

Journal Ranking & Impact Factor