Abstract
The Internet of Things (IoT) refers to a large network of devices such as sensors and actuators in which diverse types of data is generated and shared. Data can be shared in its raw form or as a result of data processing activities performed by an IoT device (e.g. anonymization, aggregation, etc.). However, sharing such data introduces a multitude of risks which are influenced by data type, data harvesting granularity, user demographics and the device under consideration. In this work, we propose a novel extension to our attack tree risk model [1] to consider user preferences for sharing personal data. We enrich our earlier work by exploring more attacks and complimenting them with a user privacy-risk model. We evaluate this proposed model and identify a range of scenarios which can result in personal information privacy violation and thus provide a model for estimating the potential risk of an IoT ecosystem.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 6th IEEE International Conference on Internet of Things |
| Subtitle of host publication | Systems, Management and Security |
| Publisher | IEEE Explore |
| Pages | 259-264 |
| Number of pages | 6 |
| ISBN (Electronic) | 978-1-7281-2949-5 |
| ISBN (Print) | 978-1-7281-2950-1 |
| DOIs | |
| Publication status | Published - 1 Feb 2020 |
| Event | The 6th IEEE International Conference on Internet of Things 2019: Systems, Management and Security 2019 - Granada, Spain Duration: 22 Oct 2019 → 25 Oct 2019 Conference number: 6th https://ieeexplore.ieee.org/xpl/conhome/8924808/proceeding |
Conference
| Conference | The 6th IEEE International Conference on Internet of Things 2019 |
|---|---|
| Abbreviated title | (IOTSMS 2019) |
| Country/Territory | Spain |
| City | Granada |
| Period | 22/10/19 → 25/10/19 |
| Internet address |
Keywords
- Privacy
- Attack Cost
- Attack Impact
- Attack Attributes
- Attack Scenarios