Home // ACCSE 2022, The Seventh International Conference on Advances in Computation, Communications and Services // View article

IoT Security: A Basic IoT Hardware Security Framework

Authors:
Christoph Haar
Erik Buchmann

Keywords: IoT Security Standards, IoT Hardware Threats, Risk Identification, Security Framework

Abstract:
More and more Internet of Things (IoT) devices are being used in companies today. The usage harbors great risks, because numerous observations have shown that many IoT devices on the market are insecure. For this reason, well-known security authorities such as the German Federal Office for Information Security (BSI) or the National Institute for Standards and Technologies (NIST) have established standards and guidelines, considering known threats and common security practices for IoT devices. They focus on software security as well as the secure planning and usage of IoT devices. Hardware security on the other hand is less considered. In this paper, we develop a basic IoT hardware security framework that can be implemented into existing security concepts. To reach this goal, we compare three official IoT security standards to identify important hardware threats. After that, we perform a risk identification for four different IoT devices to find out if the mentioned hardware threats really apply to different application scenarios. Based on the results, we develop a basic IoT hardware security framework. Our research has shown that the hardware threats mentioned in the official IoT security standards are of great importance. Because they apply to a wide range of different application scenarios for IoT devices, we implemented them in our basic IoT hardware security framework.

Pages: 7 to 12

Copyright: Copyright (c) IARIA, 2022

Publication date: June 26, 2022

Published in: conference

ISSN: 2519-8459

ISBN: 978-1-61208-964-5

Location: Lisbon, Portugal

Dates: from June 26, 2022 to June 30, 2022