Pastorek, Andrej ; Tundis, Andrea (2024)
Navigating the landscape of IoT security and associated risks in critical infrastructures.
19th International Conference on Availability, Reliability and Security (ARES2024). Vienna, Austria (30.07.2024 - 02.08.2024)
doi: 10.1145/3664476.3669979
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
The Internet of Things (IoT) presents transformative opportunities for connectivity and automation across various sectors, but it also introduces significant security risks that need to be comprehensively addressed. Indeed, the growing integration of IoT devices, including their vulnerabilities, into critical infrastructures amplifies potential risks in daily life, making these systems prime targets for cybercriminal activities, including espionage and sabotage. Cases where IoT devices have been misused, due to firmware vulnerabilities, embedded passwords, and hidden backdoors are real-world scenarios, that pose significant threats to privacy and security. That's why this paper aims to point out the urgency of addressing these issues as IoT applications continue to proliferate across healthcare, transportation, urban development and other sectors. Different types of vulnerabilities and their implications with focus on urban critical infrastructures, which can lead to severe consequences like energy blackouts, water contamination, and widespread service disruptions, especially in densely populated areas, are discussed. Moreover, the need of a multidimensional approach that encompasses technological, legal, social, and economic considerations, to deal with those broader cybersecurity and risk management implications of IoT is highlighted. As a consequence, the need for continuous evolution in security strategies to keep pace with the rapid advancements in IoT technologies is pointed out, thus arguing for a proactive approach to safeguard IoT systems against emerging threats and to ensure the safe and resilient operation of these increasingly integral parts of modern critical infrastructures.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2024 |
| Autor(en): | Pastorek, Andrej ; Tundis, Andrea |
| Art des Eintrags: | Bibliographie |
| Titel: | Navigating the landscape of IoT security and associated risks in critical infrastructures |
| Sprache: | Englisch |
| Publikationsjahr: | 30 Juli 2024 |
| Verlag: | ACM |
| Buchtitel: | ARES'24: Proceedings of the 19th International Conference on Availability, Reliability and Security |
| Veranstaltungstitel: | 19th International Conference on Availability, Reliability and Security (ARES2024) |
| Veranstaltungsort: | Vienna, Austria |
| Veranstaltungsdatum: | 30.07.2024 - 02.08.2024 |
| DOI: | 10.1145/3664476.3669979 |
| Kurzbeschreibung (Abstract): | The Internet of Things (IoT) presents transformative opportunities for connectivity and automation across various sectors, but it also introduces significant security risks that need to be comprehensively addressed. Indeed, the growing integration of IoT devices, including their vulnerabilities, into critical infrastructures amplifies potential risks in daily life, making these systems prime targets for cybercriminal activities, including espionage and sabotage. Cases where IoT devices have been misused, due to firmware vulnerabilities, embedded passwords, and hidden backdoors are real-world scenarios, that pose significant threats to privacy and security. That's why this paper aims to point out the urgency of addressing these issues as IoT applications continue to proliferate across healthcare, transportation, urban development and other sectors. Different types of vulnerabilities and their implications with focus on urban critical infrastructures, which can lead to severe consequences like energy blackouts, water contamination, and widespread service disruptions, especially in densely populated areas, are discussed. Moreover, the need of a multidimensional approach that encompasses technological, legal, social, and economic considerations, to deal with those broader cybersecurity and risk management implications of IoT is highlighted. As a consequence, the need for continuous evolution in security strategies to keep pace with the rapid advancements in IoT technologies is pointed out, thus arguing for a proactive approach to safeguard IoT systems against emerging threats and to ensure the safe and resilient operation of these increasingly integral parts of modern critical infrastructures. |
| Freie Schlagworte: | Firmware, Internet of Things, Malware, Misuse, Protection of Critical Infrastructures, Safety, Security, emergenCITY |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Telekooperation LOEWE LOEWE > LOEWE-Zentren LOEWE > LOEWE-Zentren > emergenCITY |
| Hinterlegungsdatum: | 13 Nov 2024 13:29 |
| Letzte Änderung: | 13 Nov 2024 13:29 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum