Vulnerabilities in IoT Devices, Backends, Applications, and Components

Rauli Kaksonen; Kimmo Halunen; Juha Röning

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Vulnerabilities in IoT Devices, Backends, Applications, and Components

Topics: Privacy and Security Models; Security and Privacy Metrics; Security in IoT and Edge Computing; Vulnerability Analysis and Countermeasures

In Proceedings of the 9th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 659-668, 2023 , Lisbon, Portugal

Authors: Rauli Kaksonen ; Kimmo Halunen and Juha Röning

Affiliation: University of Oulu, Oulu, Finland

Keyword(s): IoT, Vulnerabilities, Cyber Security, Information Security, NVD, CVE, CWE, CVSS.

Abstract: The Internet of Things (IoT) is the ecosystem of networked devices encountered in both work and home. IoT security is a great concern and vulnerabilities are reported daily. IoT is mixed into other digital infrastructure both in terms of sharing the same networks and using the same software components. In this paper, we analyze Common Vulnerabilities and Exposures (CVE) entries, including known exploited vulnerabilities, to describe the vulnerabilities in the IoT context. The results indicate that 88% of reported vulnerabilities are relevant to IoT systems. Half of the vulnerabilities are in the backend or frontend systems while 10-20% concern the IoT devices. HTTP servers are the vulnerability hotspots wherever they are located. Software components are used in all IoT subsystems and tracking and updating them is essential for system security. The results can be used to understand where and what kind of vulnerabilities are in IoT systems.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.217.109.151

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Kaksonen, R.; Halunen, K. and Röning, J. (2023). Vulnerabilities in IoT Devices, Backends, Applications, and Components. In Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-624-8; ISSN 2184-4356, SciTePress, pages 659-668. DOI: 10.5220/0011784400003405

@conference{icissp23,
author={Rauli Kaksonen. and Kimmo Halunen. and Juha Röning.},
title={Vulnerabilities in IoT Devices, Backends, Applications, and Components},
booktitle={Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP},
year={2023},
pages={659-668},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011784400003405},
isbn={978-989-758-624-8},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP
TI - Vulnerabilities in IoT Devices, Backends, Applications, and Components
SN - 978-989-758-624-8
IS - 2184-4356
AU - Kaksonen, R.
AU - Halunen, K.
AU - Röning, J.
PY - 2023
SP - 659
EP - 668
DO - 10.5220/0011784400003405
PB - SciTePress