IT security

MITS5004 IT Security

Umamaheshwar satyam 45124

Nikhil Kumar Potharaju 42683

Sai kiran Nichakola 44925

Professor: Dr. Abdul Malik Khan

Table of Contents Analysis of IoT architectural environment 2 Security issues 2 Use of Cloud 3 Threats of IoT 3 Conclusion 3

Introduction

Cloud and IoT based architecture are associated with heterogeneous connected networks and devices [1]. The author presents the following modern IT technology and also highlights the fact how these techniques have grown to be more realistic, efficient and reliable to adopted globally. However, with its adoption, since it is based on the connection topology of networks face many challenging issues of network threats. Thus, the author has come up with all the necessary needs of having a secure network with proper analyzation of IoT characteristics [6].

The author brief view of the analysis of IoT characteristics as it is important to analyze all the essential aspects of IoT environment to know the loopholes and areas where it needs to strengthen more in terms of security and privacy. Moreover, such complex architecture slows down the compatibility or operability of devices that are due to lack of security service [2].

Using the resources like battery and other similar equipment alters the network bandwidth hence the author proposes to need to design lightweight algorithms.

Cloud and IoT both are modern IT technology that performs its operations in a wireless connection network. Moreover, all the exchange and operation of data and information are done via the use of sensors that are vulnerable to network threats. The author has outlined a few primary issues of IoT [3].

i) Privacy: it is one of the serious issues that deal with data theft, misuse and damage of the private data.

ii) Multicasting security: it is a process where data transfer occurs and if it is not secured data leakage can take place.

iii) Bootstrapping: it formulates secure IOT connection after proper authorization.

IoT driven devices are not enough efficient to store a large database to perform respective operation therefore it requires Cloud to store the databases. The author proposes needs to deploy appropriate security measures to safeguard the data.

Commonly many network threats are experienced by the integrated network devices however, the author discusses primary network threats dividing it into two categories. Physical threats and Non-Physical threats which are the network-driven threats and usually occur [5]. Some of the identified network threats by the author are:

i) Sniffing: it occurs due to curbed network traffic that leads to unwanted data interception. If these access packets of data are not encrypted well these falls prey to hackers easily [4].

ii) Man in the middle attack: it occurs whenever the communication path is altered.

iii) Spoofing: it is a condition where user pretends to be the authentic user and access all the related information.

iv) Vulnerable firmware: due to inappropriate firmware data security is at risk of leakage.

v) Denial of service: it occurs whenever the connectivity of the host and server is temporarily altered.

Based on the above report the author has successfully briefed the analysis for security requirements in the IoT environment. Also, there is an appropriate evaluation of the IoT characteristics. The author has presented the necessary security requirements and formulates different network threats. Moreover, security issues are also presented in the report with all the identified threat issues that could affect the reliability of the network using the cloud.

References

[1]P. Rajani and P. Reddy, "Security Ecosystem in IoT & Cloud", International Journal Of Engineering And Computer Science, 2016. Available: 10.18535/ijecs/v5i3.14.

[2]A. Ibrahim, "Eliciting Security Requirements of IoT Applications using Essential Use Case", International Journal of Information Systems and Computer Sciences, vol. 8, no. 6, pp. 168-175, 2019. Available: 10.30534/ijiscs/2019/01862019.

[3]N. N. and V. Pai, "Survey on IoT Security Issues and Security Protocols", International Journal of Computer Applications, vol. 180, no. 42, pp. 16-21, 2018. Available: 10.5120/ijca2018917108.

[4]S. Definitions and C. Hope, "What is Sniffing?", Computerhope.com, 2020. [Online]. Available: https://www.computerhope.com/jargon/s/sniffing.htm. [Accessed: 09- Apr- 2020].

[5]A. Sahai, "Security Issues & Threats in IoT Infrastructure", International Journal of Advanced Engineering, Management and Science, vol. 4, no. 5, pp. 395-399, 2018. Available: 10.22161/ijaems.4.5.10.

[6]S. Ra Oh and Y. Gab Kim, Faratarjome.ir, 2017. [Online]. Available: http://faratarjome.ir/u/media/shopping_files/store-EN-1519897348-9610.pdf. [Accessed: 09- Apr- 2020].