Apparatus: A framework for security analysis in internet of things systems

Orestis Mavropoulos; Haralambos Mouratidis; Andrew Fish; Emmanouil Panaousis

doi:10.1016/j.adhoc.2018.08.013

Apparatus: A framework for security analysis in internet of things systems

Orestis Mavropoulos, Haralambos Mouratidis, Andrew Fish, Emmanouil Panaousis

Research output: Contribution to journal › Article › peer-review

Abstract

Internet of Things (IoT) systems are ubiquitous, highly complex and dynamic event-based systems. These characteristics make their security analysis challenging. Security in IoT requires domain-specific methodologies and tools. The proposed methodologies need to be able to capture information from software and hardware constructs to security and social constructs. In this paper, in addition to refining the modeling language of the APPARATUS Framework, we propose a class-based notation of the modeling language and a structured approach to transition between different models. APPARATUS is a security framework developed to facilitate security analysis in IoT systems. We demonstrate the application of the framework by analyzing the security of smart public transport system. The security analysis and visualization of the system are facilitated by a software application that is developed as part of the APPARATUS Framework.

Original language	English
Journal	Ad Hoc Networks
DOIs	https://doi.org/10.1016/j.adhoc.2018.08.013
Publication status	Published - 23 Aug 2018

Keywords

Apparatus framework
IoT Security
Security requirements
Smart cities security

Access to Document

10.1016/j.adhoc.2018.08.013

Apparatus: A Framework for Security Analysis in Internet of Things SystemsAccepted author manuscript, 838 KBLicence: CC BY-NC-ND

Link to publication in Scopus

Fingerprint Dive into the research topics of 'Apparatus: A framework for security analysis in internet of things systems'. Together they form a unique fingerprint.

Andrew Fish
- Andrew.Fish@brighton.ac.uk
Person: Academic
Haris Mouratidis
- H.Mouratidis@brighton.ac.uk
- School of Computing, Engineering & Maths - Prof of Software Systems Engineering
- Centre for Secure, Intelligent and Usable Systems
Person: Academic

Cite this

@article{7eb6f13a13434b078d1c6bbab492883a,

title = "Apparatus: A framework for security analysis in internet of things systems",

abstract = "Internet of Things (IoT) systems are ubiquitous, highly complex and dynamic event-based systems. These characteristics make their security analysis challenging. Security in IoT requires domain-specific methodologies and tools. The proposed methodologies need to be able to capture information from software and hardware constructs to security and social constructs. In this paper, in addition to refining the modeling language of the APPARATUS Framework, we propose a class-based notation of the modeling language and a structured approach to transition between different models. APPARATUS is a security framework developed to facilitate security analysis in IoT systems. We demonstrate the application of the framework by analyzing the security of smart public transport system. The security analysis and visualization of the system are facilitated by a software application that is developed as part of the APPARATUS Framework.",

keywords = "Apparatus framework, IoT Security, Security requirements, Smart cities security",

author = "Orestis Mavropoulos and Haralambos Mouratidis and Andrew Fish and Emmanouil Panaousis",

year = "2018",

month = aug,

day = "23",

doi = "10.1016/j.adhoc.2018.08.013",

language = "English",

journal = "Ad Hoc Networks",

issn = "1570-8705",

}

TY - JOUR

T1 - Apparatus

T2 - A framework for security analysis in internet of things systems

AU - Mavropoulos, Orestis

AU - Mouratidis, Haralambos

AU - Fish, Andrew

AU - Panaousis, Emmanouil

PY - 2018/8/23

Y1 - 2018/8/23

N2 - Internet of Things (IoT) systems are ubiquitous, highly complex and dynamic event-based systems. These characteristics make their security analysis challenging. Security in IoT requires domain-specific methodologies and tools. The proposed methodologies need to be able to capture information from software and hardware constructs to security and social constructs. In this paper, in addition to refining the modeling language of the APPARATUS Framework, we propose a class-based notation of the modeling language and a structured approach to transition between different models. APPARATUS is a security framework developed to facilitate security analysis in IoT systems. We demonstrate the application of the framework by analyzing the security of smart public transport system. The security analysis and visualization of the system are facilitated by a software application that is developed as part of the APPARATUS Framework.

AB - Internet of Things (IoT) systems are ubiquitous, highly complex and dynamic event-based systems. These characteristics make their security analysis challenging. Security in IoT requires domain-specific methodologies and tools. The proposed methodologies need to be able to capture information from software and hardware constructs to security and social constructs. In this paper, in addition to refining the modeling language of the APPARATUS Framework, we propose a class-based notation of the modeling language and a structured approach to transition between different models. APPARATUS is a security framework developed to facilitate security analysis in IoT systems. We demonstrate the application of the framework by analyzing the security of smart public transport system. The security analysis and visualization of the system are facilitated by a software application that is developed as part of the APPARATUS Framework.

KW - Apparatus framework

KW - IoT Security

KW - Security requirements

KW - Smart cities security

UR - http://www.scopus.com/inward/record.url?scp=85052808827&partnerID=8YFLogxK

U2 - 10.1016/j.adhoc.2018.08.013

DO - 10.1016/j.adhoc.2018.08.013

M3 - Article

AN - SCOPUS:85052808827

JO - Ad Hoc Networks

JF - Ad Hoc Networks

SN - 1570-8705

ER -

Apparatus: A framework for security analysis in internet of things systems

Abstract

Keywords

Access to Document

Andrew Fish

Haris Mouratidis

Cite this