Security Framework for IoT Devices against Cyber-Attacks

TL;DR

This paper reviews IoT security challenges and proposes a comprehensive framework incorporating intrusion detection and intelligent mechanisms to defend against evolving cyber-attacks on IoT devices.

Contribution

It introduces a security framework for IoT that combines existing defenses with intelligent intrusion detection to address zero-day attacks.

Findings

Identified key IoT attack vectors and defense gaps.

Proposed a layered security framework with IDS integration.

Highlighted the need for adaptive security mechanisms.

Abstract

Internet of Things (IoT) is the interconnection of heterogeneous smart devices through the Internet with diverse application areas. The huge number of smart devices and the complexity of networks has made it impossible to secure the data and communication between devices. Various conventional security controls are insufficient to prevent numerous attacks against these information-rich devices. Along with enhancing existing approaches, a peripheral defence, Intrusion Detection System (IDS), proved efficient in most scenarios. However, conventional IDS approaches are unsuitable to mitigate continuously emerging zero-day attacks. Intelligent mechanisms that can detect unfamiliar intrusions seems a prospective solution. This article explores popular attacks against IoT architecture and its relevant defence mechanisms to identify an appropriate protective measure for different networking practices and attack categories. Besides, a security framework for IoT architecture is provided with a list of security enhancement techniques.