IoT security: Review, blockchain solutions, and open challenges

The Internet of Things is a paradigm where everyday objects can be equipped with identifying, sensing, networking and processing capabilities that will allow them to communicate with one another and with other devices and services over the Internet to accomplish some objective. Ultimately, IoT devices will be ubiquitous, context-aware and will enable ambient intelligence. This article reports on the current state of research on the Internet of Things by examining the literature, identifying current trends, describing challenges that threaten IoT diffusion, presenting open research questions and future directions and compiling a comprehensive reference list to assist researchers.

The Internet of Things--A survey of topics and trends

http://www.parkjonghyuk.net/lecture/2015-1st-lecture/networksecurity/Paper1.pdf

Security, privacy and trust in Internet of Things

https://www.ftc.gov/sites/default/files/documents/public_comments/2013/07/00031-86244.pdf

On the features and challenges of security and privacy in distributed internet of things

Internet of Things security

IoT is an intelligent collaboration of tiny sensors and devices giving new challenges to security and privacy in end to end communication of things. Protection of data and privacy of things is one of the key challenges in the IoT. Lack of security measures will result in decreased adoption among users and therefore is one of the driving factors in the success of the IoT. This paper gives an overview, analysis and taxonomy of security and privacy challenges in IoT. Finally, Security Model for IoT has been proposed.

Proposed Security Model and Threat Taxonomy for the Internet of Things (IoT)

COVID-19 is a pandemic that has affected over 170 countries around the world. The number of infected and deceased patients has been increasing at an alarming rate in almost all the affected nations. Forecasting techniques can be inculcated thereby assisting in designing better strategies and in taking productive decisions. These techniques assess the situations of the past thereby enabling better predictions about the situation to occur in the future. These predictions might help to prepare against possible threats and consequences. Forecasting techniques play a very important role in yielding accurate predictions. This study categorizes forecasting techniques into two types, namely, stochastic theory mathematical models and data science/machine learning techniques. Data collected from various platforms also play a vital role in forecasting. In this study, two categories of datasets have been discussed, i.e., big data accessed from World Health Organization/National databases and data from a social media communication. Forecasting of a pandemic can be done based on various parameters such as the impact of environmental factors, incubation period, the impact of quarantine, age, gender and many more. These techniques and parameters used for forecasting are extensively studied in this work. However, forecasting techniques come with their own set of challenges (technical and generic). This study discusses these challenges and also provides a set of recommendations for the people who are currently fighting the global COVID-19 pandemic.

/pdf/forecasting-models-for-coronavirus-disease-covid-19-a-survey-40j1pyy537.pdf

Forecasting Models for Coronavirus Disease (COVID-19): A Survey of the State-of-the-Art

In the last few years the Internet of Things (IoT) has seen widespreadapplication and can be found in each field. Authentication and accesscontrol are important and critical functionalities in the context of IoTto enable secure communication between devices. Mobility, dynamicnetwork topology and weak physical security of low power devices in IoTnetworks are possible sources for security vulnerabilities. It ispromising to make an authentication and access control attack resistant andlightweight in a resource constrained and distributed IoT environment.This paper presents the Identity Authentication and Capability basedAccess Control (IACAC) model with protocol evaluation and performanceanalysis. To protect IoT from man-in-the-middle, replay and denial ofservice (Dos) attacks, the concept of capability for access control isintroduced. The novelty of this model is that, it presents an integratedapproach of authentication and access control for IoT devices. Theresults of other related study have also been analyzed to validate andsupport our findings. Finally, the proposed protocol is evaluated byusing security protocol verification tool and verification results showsthat IACAC is secure against aforementioned attacks. This paper alsodiscusses performance analysis of the protocol in terms of computationaltime compared to other existing solutions. Furthermore, this paper addresseschallenges in IoT and security attacks are modelled with the use casesto give an actual view of IoT networks.

/pdf/identity-authentication-and-capability-based-access-control-2yluaims6o.pdf

Identity Authentication and Capability Based Access Control (IACAC) for the Internet of Things

In the Internet of thing (IoT), the activities of daily life are supported by a multitude of heterogeneous, loosely coupled ubiquitous devices. Traditional access control model are not suitable to the nomadic, decentralized and dynamic scenarios in the IoT where identities are not known in advance. This makes the trust management in IoT more promising to address the access control issues .This paper present a Fuzzy approach to the Trust Based Access Control (FBAC) with the notion of trust levels for identity management. The presented fuzzy approach for trust calculations deals with the linguistic information of devices to address access control in the IoT. The simulation result shows that the fuzzy approach for trust based access control guarantees scalability ad it is energy efficient. This paper also proposes FTBAC framework or trust based dynamic access control in distributed IoT. FTBAC framework i a flexible and scalable a increasing number o devices do not affect the functioning and performance.

/pdf/a-fuzzy-approach-to-trust-based-access-control-in-internet-5xjln0ggv1.pdf

A fuzzy approach to trust based access control in internet of things

Flexibility is an important property for general access control system and especially in the Internet of Things (IoT), which can be achieved by access or authority delegation. Delegation mechanisms in access control that have been studied until now have been intended mainly for a system that has no resource constraint, such as a web-based system, which is not very suitable for a highly pervasive system such as IoT. To this end, this paper presents an access delegation method with security considerations based on Capability-based Context Aware Access Control (CCAAC) model intended for federated machine-to-machine communication or IoT networks. The main idea of our proposed model is that the access delegation is realized by means of a capability propagation mechanism, and incorporating the context information as well as secure capability propagation under federated IoT environments. By using the identity-based capability-based access control approach as well as contextual information and secure federated IoT, this proposed model provides scalability and flexibility as well as secure authority delegation for highly distributed system.

/pdf/capability-based-access-control-delegation-model-on-the-1bxlec037y.pdf

Parikshit N. Mahalle

Papers

Proposed Security Model and Threat Taxonomy for the Internet of Things (IoT)

Forecasting Models for Coronavirus Disease (COVID-19): A Survey of the State-of-the-Art

Identity Authentication and Capability Based Access Control (IACAC) for the Internet of Things

A fuzzy approach to trust based access control in internet of things

Capability-based access control delegation model on the federated IoT network