Presentation is loading. Please wait.

Presentation is loading. Please wait.

Internet of Things Andrew Cox.

Published byAlbert Jonker Modified over 5 years ago

Similar presentations

Presentation on theme: "Internet of Things Andrew Cox."— Presentation transcript:

1 Internet of Things Andrew Cox

2 Outline Overview Applications Security Concerns
Security of Data Storage Access Control References

3 Overview The Internet of Things (IoT) is a network of physical objects, each of which transmits data

4 🏠 🏥 📺 Applications Personal Business Healthcare
Fig 1. Diagram of a Pacemaker (Mayo).

5 Security Concerns The primary focus of my research is the "Storage" Phase. Fig. 2 - Attacks based on Phase (Ferreira).

6 Security of Data Storage
Scope Attacks Lack of standardization for data storage Inability to easily determine/control the type of data being stored Privacy Denial of Service (DoS) Data/Identity Theft Man-in-the-Middle

7 Access Control Access controls restrict the access which machines, users, and other entities have to data and systems. Primary Models: Mandatory Access Control (MAC) Discretionary Access Control (DAC) Role-Based Access Control (RBAC) Attribute-Based Access Control (ABAC)

8 Example of an ACL for a Single Object
Access Control (DAC) Example of an ACL for a Single Object Control over data access is granted to the data's owner. Access is typically regulated through an access control list (ACL). User_ID PERMISSIONS Andrew (OWNER) R,W,E,D,AC Adam R,E REBEcca R,W,E Sam E Key: R = "read"; W = "write"; E = "execute"; D = "delete"; AC = "access control"

9 Access Control (MAC) DAC Security Example
The highest level of control over all data/resources is granted to the system administrator. The security model is standardized. DAC Security Example Users Security Level ADAM TS REBECCA S JOE C Sam Objects Security Level DOC_1 TS App_2 S Doc_3 C SPREADSHEET_4 Key: TS = "Top Secret"; S = "Secret"; C = "Confidential" TS > S > C

10 Access Control (RBAC) Roles (College Example)
Permissions Objects Dept_Head R,W All Data for All Students in the Department Advisor R All Data for Their Advisees Courses for Their Advisees (Overrides) Instructor Rosters for Their Courses Grades Student Their Own Courses and Grades Personal Information Permissions are grouped by "roles." Each user is assigned a role which allows them to access different resources. RBAC is primarily used in businesses/organizations.

11 Access Control (ABAC) ABAC regulates access to data based on multiple attributes (e.g. time, location, device, etc.). This can be used to implement all three access control models previously discussed. "Due to its flexibility, the ABAC model has been widely used for implementing access control for IoT." (Bertin, 2019)

12 Issues with Access Control
Even though the ABAC model can check for multiple attributes to prevent unauthorized access, it is still limited when using IoT. Most IoT devices have limited processing capabilities and might not be able to provide the necessary attributes. They might also be formatted differently.

13 References Ferreira, Roberto. "Internet of Things: Privacy and Security Implications." Proceedings of the Digital Privacy and Security Conference, 2019, privacyandsecurityconference.pt/proceedings.html. Bertin, Emmanuel, et al. "Access Control in the Internet of Things: a Survey of Existing Approaches and Open Research Questions." Annals of Telecommunications, 2019, doi: /s Belim, Sergey, et al. "A Precedent Approach to Assigning Access Rights." Cornell University, 2018, arxiv.org/abs/

14 References (cont.) "IPhone 8." Buy IPhone 8 and IPhone 8 Plus - Apple, "Cartoon Light Switch # " Clipart Library, clipart-library.com/clipart/LidoBAEdT.htm. Johnett. "A Thermostat Clipart." Kisspng, art /. "Modern SmartWatch PNG Clipart." Clipart PNG Pictures, clipartpng.com/?768,modern- smartwatch-png-clipart. "Pacemaker." Pacemaker - Mayo Clinic, Mayo Foundation for Medical Education and Research, 2019, Oksmith. "Security Camera (#1)." OpenClipart, 11 Feb. 2018, openclipart.org/detail/296461/security-camera.

Download ppt "Internet of Things Andrew Cox."

Similar presentations

Jan. 2014Dr. Yangjun Chen ACS-49021 Database security and authorization (Ch. 22, 3 rd ed. – Ch. 23, 4 th ed. – Ch. 24, 6 th )

Jan. 2014Dr. Yangjun Chen ACS Database security and authorization (Ch. 22, 3 rd ed. – Ch. 23, 4 th ed. – Ch. 24, 6 th )
RBAC and Usage Control System Security. Role Based Access Control Enterprises organise employees in different roles RBAC maps roles to access rights After.

RBAC and Usage Control System Security. Role Based Access Control Enterprises organise employees in different roles RBAC maps roles to access rights After.
1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.

1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.
1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.

1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.
Database Security - Farkas 1 Database Security and Privacy.

Database Security - Farkas 1 Database Security and Privacy.
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
Security Fall 2009McFadyen ACS-49021 How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.

Security Fall 2009McFadyen ACS How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.
Security Fall 2006McFadyen ACS-49021 How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.

Security Fall 2006McFadyen ACS How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.
Role Based Access control By Ganesh Godavari. Outline of the talk Motivation Terms and Definitions Current Access Control Mechanism Role Based Access.

Role Based Access control By Ganesh Godavari. Outline of the talk Motivation Terms and Definitions Current Access Control Mechanism Role Based Access.
Role Based Access Control Models Presented By Ankit Shah 2 nd Year Master’s Student.

Role Based Access Control Models Presented By Ankit Shah 2 nd Year Master’s Student.
2  A system can protect itself in two ways: It can limit who can access the system. This requires the system to implement a two-step process of identification.

2  A system can protect itself in two ways: It can limit who can access the system. This requires the system to implement a two-step process of identification.
Lecture 7 Access Control

Lecture 7 Access Control
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.

7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.
1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.

1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.
Li Xiong CS573 Data Privacy and Security Access Control.

Li Xiong CS573 Data Privacy and Security Access Control.
Sharing Resources Lesson 6. Objectives Manage NTFS and share permissions Determine effective permissions Configure Windows printing.

Sharing Resources Lesson 6. Objectives Manage NTFS and share permissions Determine effective permissions Configure Windows printing.
Security+ All-In-One Edition Chapter 19 – Privilege Management Brian E. Brzezicki.

Security+ All-In-One Edition Chapter 19 – Privilege Management Brian E. Brzezicki.
CSCE 201 Introduction to Information Security Fall 2010 Access Control.

CSCE 201 Introduction to Information Security Fall 2010 Access Control.

Similar presentations

Ads by Google