DocumentCode
624831
Title
Threat implications of the Internet of Things
Author
Covington, Michael J. ; Carskadden, Rush
Author_Institution
Security Intell. Oper., Cisco Syst., Inc., San Francisco, CA, USA
fYear
2013
fDate
4-7 June 2013
Firstpage
1
Lastpage
12
Abstract
There are currently more objects connected to the Internet than there are people in the world. This gap will continue to grow, as more objects gain the ability to directly interface with the Internet or become physical representations of data accessible via Internet systems. This trend toward greater independent object interaction in the Internet is collectively described as the Internet of Things (IoT). As with previous global technology trends, such as widespread mobile adoption and datacentre consolidation, the changing operating environment associated with the Internet of Things represents considerable impact to the attack surface and threat environment of the Internet and Internet-connected systems. The increase in Internet-connected systems and the accompanying, non-linear increase in Internet attack surface can be represented by several tiers of increased surface complexity. Users, or groups of users, are linked to a non-linear number of connected entities, which in turn are linked to a non-linear number of indirectly connected, trackable entities. At each tier of this model, the increasing population, complexity, heterogeneity, interoperability, mobility, and distribution of entities represents an expanding attack surface, measurable by additional channels, methods, and data items. Further, this expansion will necessarily increase the field of security stakeholders and introduce new manageability challenges. This document provides a framework for measurement and analysis of the security implications inherent in an Internet that is dominated by non-user endpoints, content in the form of objects, and content that is generated by objects without direct user involvement.
Keywords
Internet of Things; computational complexity; computer centres; mobile computing; security of data; Internet attack surface; Internet of things; Internet systems; Internet-connected systems; IoT; data items; datacentre consolidation; independent object interaction; manageability challenges; mobile adoption; security implications; security stakeholders; surface complexity; Complexity theory; Internet; Interoperability; Market research; Security; Sociology; Statistics; Internet of Things; attack surface; security intelligence; threat evolution;
fLanguage
English
Publisher
ieee
Conference_Titel
Cyber Conflict (CyCon), 2013 5th International Conference on
Conference_Location
Tallinn
ISSN
2325-5366
Print_ISBN
978-1-4799-0450-1
Type
conf
Filename
6568380
Link To Document