Common cybersecurity requirements in IoT standards, best practices, and guidelines
Kaksonen, Rauli; Halunen, Kimmo; Röning, Juha (2022-04-22)
Kaksonen, R.; Halunen, K. and Röning, J. (2022). Common Cybersecurity Requirements in IoT Standards, Best Practices, and Guidelines. In Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - IoTBDS, ISBN 978-989-758-564-7, pages 149-156. DOI: 10.5220/0011041700003194
Copyright © 2022 by SCITEPRESS – Science and Technology Publications, Lda. All rights reserved. Licensed under the Creative Commons CC BY-NC-ND 4.0 license.
https://creativecommons.org/licenses/by-nc-nd/4.0/
https://urn.fi/URN:NBN:fi-fe2022050633293
Tiivistelmä
Abstract
The cybersecurity of the Internet of Things (IoT) is an increasing concern and product vendors are advised to follow security standards, best practices, and guidelines. From the many requirement sources, a vendor is likely to choose only a few. How does this selection impact the security requirements of an IoT product? To answer the question, we collect requirements from 16 sources and divide them into categories for comparison. Common categories are identified, with all sources covering Security design, Interface security, Authentication, Data protection, and System updates. The agreement on the high-level categories does not hold in the subcategories and the selection of the sources have a big impact to the requirement details. Consolidation of the IoT security requirements would be desirable and possible.
Kokoelmat
- Avoin saatavuus [31657]