Packt+ | Advance your knowledge in tech

0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Practical Internet of Things Security

You're reading from Practical Internet of Things Security Design a security framework for an Internet connected ecosystem

Product type Paperback

Published in Nov 2018

Publisher

ISBN-13 9781788625821

Length 382 pages

Edition 2nd Edition

Tools

AWS

Concepts

Design

Authors (2):

Brian Russell

Drew Van Duren

View More author details

Table of Contents (13) Chapters

Preface

1. A Brave New World FREE CHAPTER

2. Vulnerabilities, Attacks, and Countermeasures

3. Approaches to Secure Development

4. Secure Design of IoT Devices

5. Operational Security Life Cycle

6. Cryptographic Fundamentals for IoT Security Engineering

7. Identity and Access Management Solutions for the IoT

8. Mitigating IoT Privacy Concerns

9. Setting Up an IoT Compliance Monitoring Program

10. Cloud Security for the IoT

11. IoT Incident Response and Forensic Analysis

12. Other Books You May Enjoy

Leave a review - let other readers know what you think

Managing accounts, passwords, and authorizations

Just as with keys and certificates, accounts and passwords should be actively managed. Passwords used for remote access to IoT devices, or used to restrict operational IoT activities (for example, pub/sub message handling) should be rotated regularly. This is not possible using manual methods, so automation is key here. Tools, such as those from ForgeRock, provide options to enable automated account and password management.

ForgeRock allows you to pair their identity management platform with identity edge controllers that are installed on IoT devices. This pairing supports password policy enforcement, including password strength, age, and reuse, and supports dynamic authorization decisions for device-to-device, device-to-service, and user-to-device relationships.

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (2)

Russell

Russell

Brian Russell is the founder of TrustThink, LLC, where he leads multiple efforts towards the development of trusted IoT solutions. He has over 20 years of information security experience and has led complex system security engineering programs in the areas of cryptographic modernization, cryptographic key management, unmanned aerial systems, and connected vehicle security. He is the co-chair of the Cloud Security Alliance (CSA) IoT Working Group and was the recipient of the 2015 and 2016 CSA Ron Knode Service Award. Brian is an adjunct professor at the University of San Diego (USD) in the Cyber Security Operations and Leadership program.

See other products by Russell

Van Duren

Van Duren

Drew Van Duren has provided 20 years of support to commercial and government customers in their efforts to secure safety-of-life and national security systems. He has provided extensive applied cryptographic design, key management expertise, and system security architecture design through rigorous integration of system security design with the core engineering disciplines. Drew has managed as Technical Director the two largest FIPS 140-2 test laboratories, security-consulted for the New York City Connected Vehicle Pilot Deployment, and participated in multiple standards groups such as the RTCA, SAE, and IEEE 1609 working group. Today, he supports the IEEE P1920 committee heading security architecture for unmanned aircraft aerial networks.

See other products by Van Duren

Other recommended products

Related to this chapter

Hands-On Cryptography with Python

Hands-On Cryptography with Python

Cryptography is essential to protect sensitive information, but it is often performed inadequately or incorrectly. This book will show how to encrypt, evaluate, compare, and attack your data using Python. Overall, the book will help you deal with the common errors in encryption and would know how to exploit them.

Jun 2018 3h 20m

Hands-On Cryptography with Python

Hands-On Cryptography with Python

Cryptography is essential to protect sensitive information, but it is often performed inadequately or incorrectly. This book will show how to encrypt, evaluate, compare, and attack your data using Python. Overall, the book will help you deal with the common errors in encryption and would know how to exploit them.

Jun 2018 3h 20m

Hands-On Cryptography with Python

Hands-On Cryptography with Python

Cryptography is essential to protect sensitive information, but it is often performed inadequately or incorrectly. This book will show how to encrypt, evaluate, compare, and attack your data using Python. Overall, the book will help you deal with the common errors in encryption and would know how to exploit them.

Jun 2018 3h 20m

Hands-On Cryptography with Python

Hands-On Cryptography with Python

Cryptography is essential to protect sensitive information, but it is often performed inadequately or incorrectly. This book will show how to encrypt, evaluate, compare, and attack your data using Python. Overall, the book will help you deal with the common errors in encryption and would know how to exploit them.

Jun 2018 3h 20m

Practical Industrial Internet of Things Security

Practical Industrial Internet of Things Security

This book provides you with a comprehensive understanding of Industrial IoT security; and practical methodologies to implement safe, resilient cyber-physical systems. It will help you develop a strong foundation and deeper insights on the entire gamut of securing connected industries, from the edge to the cloud.

Jul 2018 10h 48m

Practical Industrial Internet of Things Security

Practical Industrial Internet of Things Security

This book provides you with a comprehensive understanding of Industrial IoT security; and practical methodologies to implement safe, resilient cyber-physical systems. It will help you develop a strong foundation and deeper insights on the entire gamut of securing connected industries, from the edge to the cloud.

Jul 2018 10h 48m

Practical Industrial Internet of Things Security

Practical Industrial Internet of Things Security

This book provides you with a comprehensive understanding of Industrial IoT security; and practical methodologies to implement safe, resilient cyber-physical systems. It will help you develop a strong foundation and deeper insights on the entire gamut of securing connected industries, from the edge to the cloud.

Jul 2018 10h 48m

Azure IoT Development Cookbook

Azure IoT Development Cookbook

It is important to develop robust and reliable solutions for your organization to leverage IoT services. Microsoft's end-to-end IoT platform is the most complete IoT offering. It empowers enterprises to build and realize value from their IoT solutions for innovative business outcomes with Microsoft Azure IoT. This book will teach you how to connect multiple devices to the Azure IoT hub, develop, manage the IoT hub service, and integrate the hub with the cloud.

Aug 2017 8h 28m

Azure IoT Development Cookbook

Azure IoT Development Cookbook

It is important to develop robust and reliable solutions for your organization to leverage IoT services. Microsoft's end-to-end IoT platform is the most complete IoT offering. It empowers enterprises to build and realize value from their IoT solutions for innovative business outcomes with Microsoft Azure IoT. This book will teach you how to connect multiple devices to the Azure IoT hub, develop, manage the IoT hub service, and integrate the hub with the cloud.

Aug 2017 8h 28m

Azure IoT Development Cookbook

Azure IoT Development Cookbook

It is important to develop robust and reliable solutions for your organization to leverage IoT services. Microsoft's end-to-end IoT platform is the most complete IoT offering. It empowers enterprises to build and realize value from their IoT solutions for innovative business outcomes with Microsoft Azure IoT. This book will teach you how to connect multiple devices to the Azure IoT hub, develop, manage the IoT hub service, and integrate the hub with the cloud.

Aug 2017 8h 28m

IoT Penetration Testing Cookbook

IoT Penetration Testing Cookbook

IoT is an upcoming trend in the IT industry today; there are a lot of IoT devices on the market but there is a minimal understanding of how to safeguard them. If you are a security enthusiast or pentester, this book will help you understand how to exploit and secure IoT devices. You will learn how to identify vulnerabilities in IoT device architecture and firmware using software and hardware pentesting techniques, and you'll also focus on various IoT exploitation techniques and security automation.

Nov 2017 15h 4m

IoT Penetration Testing Cookbook

IoT Penetration Testing Cookbook

IoT is an upcoming trend in the IT industry today; there are a lot of IoT devices on the market but there is a minimal understanding of how to safeguard them. If you are a security enthusiast or pentester, this book will help you understand how to exploit and secure IoT devices. You will learn how to identify vulnerabilities in IoT device architecture and firmware using software and hardware pentesting techniques, and you'll also focus on various IoT exploitation techniques and security automation.

Nov 2017 15h 4m

Personalised recommendations for you

Based on your interests and search pattern

PLCs for Beginners

PLCs for Beginners

In this book, you'll learn programming techniques to create state-of-the-art PLC software using structured text. You'll delve into complex computer science concepts to give yourself an edge over the competition and create resounding software.

May 2024 12h 40m

PLCs for Beginners

PLCs for Beginners

In this book, you'll learn programming techniques to create state-of-the-art PLC software using structured text. You'll delve into complex computer science concepts to give yourself an edge over the competition and create resounding software.

May 2024 12h 40m

PLCs for Beginners

PLCs for Beginners

In this book, you'll learn programming techniques to create state-of-the-art PLC software using structured text. You'll delve into complex computer science concepts to give yourself an edge over the competition and create resounding software.

May 2024 12h 40m

PLCs for Beginners

PLCs for Beginners

In this book, you'll learn programming techniques to create state-of-the-art PLC software using structured text. You'll delve into complex computer science concepts to give yourself an edge over the competition and create resounding software.

May 2024 12h 40m

Internet of Things Programming Projects

Internet of Things Programming Projects

This second edition of Internet of Things Programming Projects will equip both beginners and experienced programmers with the knowledge and skills needed to create projects using Raspberry Pi, web services, LoRa, wireless communication, and MQTT.

Jun 2024 15h 16m

Internet of Things Programming Projects

Internet of Things Programming Projects

This second edition of Internet of Things Programming Projects will equip both beginners and experienced programmers with the knowledge and skills needed to create projects using Raspberry Pi, web services, LoRa, wireless communication, and MQTT.

Jun 2024 15h 16m

Building Secure Automotive IoT Applications

Building Secure Automotive IoT Applications

Critically timed for automotive IoT software engineers, this book teaches skills in vehicle architectures, cybersecurity, and the cloud. Additionally, you'll get hands-on with embedded software development.

Aug 2024 11h 56m

Accelerating IoT Development with ChatGPT

Accelerating IoT Development with ChatGPT

This book will help you leverage ChatGPT to accelerate your IoT innovation and development. You'll learn essential IoT concepts and elements, explore project examples, and complete an end-to-end application through step-by-step guidance.

Aug 2024 12h 16m