【电信学】【2016】物联网智能家居
本文为瑞典吕勒奥理工大学(作者:Bako Ali)的硕士论文。
物联网(IoT)是一种新兴的模式,专注于各种事物或设备之间以及与用户之间的相互连接。随着时间的推移,物联网中的大多数连接从“人到物”转变为“物到物”。这项技术有望成为智能家居发展的一个重要里程碑,为我们的生活和家庭带来便利和效率。但是,通过将这种物联网技术带到我们的家中,将对家庭安全产生重要影响。将家中的每个智能对象连接到互联网,实现彼此互通,会导致新的安全和隐私问题,例如,对象感测和交换数据的机密性、真实性和完整性。这些技术非常容易受到不同的安全攻击,使基于物联网的智能家居无法安全地使用,因此有必要评估安全风险,以判断智能家居的发展状况。
任何技术要想获得成功并得到广泛应用,都需要通过提供足够的安全和隐私保证来获得用户的信任。与所有部门一样,维护安全将是一个需要克服的关键挑战。随着越来越多的家庭电脑化和设备化,潜在的计算机安全攻击及其对居民的影响需要进行彻底调查。本报告采用OCTAVEAllegro方法,主要关注信息资产,考虑相关容器(技术、物理和人员),并进行安全风险评估,以突出物联网智能家居的各种安全缺陷、影响并提出对策,以满足大多数安全要求的已确定问题。最后,对用户提出了一些使用建议。将研究结果记录到基于安全IOT的智能家居系统的论文中,得到的列表和建议将是一些有用的贡献,可作为安全要求规范的基础。对于未来的工作,安全评估将扩展到包括更多类型的智能家居应用,而不仅仅是典型的应用场景。
The Internet of Things (IoT) is an emergingparadigm focusing on the inter-connection of things or devices to each otherand to the users. Over time, the most of connections in IoT are shifting from‘Human to Thing’ to ‘Thing to Thing’. This technology is anticipated to becomean essential milestone in the development of smart homes to bring convenienceand efficiency into our lives and our homes. But, by bringing this IoTtechnology into our homes there will be important implications for security inthese technologies. Connecting every smart objects inside the home to theinternet and to each other resultsin new security and privacy problems, e.g.,confidentiality, authenticity, and integrity of data sensed and exchanged byobjects. These technologies are very much vulnerable to different securityattacks that make an IoT-based smart home unsecure to live in and therefore itis necessary to evaluate the security risks to judge the situation of the smarthomes. For any technology to be successful and achieve widespread use, it needsto gain the trust of users by providing sufficient security and privacyassurance. As in all sectors, maintaining security will be a critical challengeto overcome. As homes are increasingly computerized and filled with devices,potential computer security attacks and their impact on residents need to beinvestigated. Thisreport uses OCTAVE Allegro Methodology which focuses mainlyon information assets and considers containers (technical, physical and people)and conducts a security risk assessment with the goal of highlighting varioussecurity flaws in IoT-based smart home, impacts and proposing countermeasuresto the identified issues satisfying most of security requirements. Finally, itcomes up with some recommendations to the users. The research findingsdocumented into a thesis paper for secure IoT-based smart home systems and theresulted list and recommendations will be some useful contribution which can beused as a foundation for the specification of security requirements. For futurework, the assessment will be extended to include more types of smart home applicationsrather than just typical one.
1 引言
2 基于IoT智能家居环境的回顾
3 文献回顾
4 本文提出的研究方法
5 安全风险评估
6 结果与讨论
7 建议
8 结论
更多精彩文章请关注公众号: