▶Book Description
With the advent of the Internet of Things (IoT), businesses have to defend against new types of threat. The business ecosystem now includes the cloud computing infrastructure, mobile and fixed endpoints that open up new attack surfaces. It therefore becomes critical to ensure that cybersecurity threats are contained to a minimum when implementing new IoT services and solutions. The interconnectivity of people, devices, and companies raises the stakes to a new level; as computing becomes ever more mobile, everything becomes connected to the cloud,and its infrastructure is hard put to it to securely manage the billions of devices that will connect us all to the IoT.
This book shows you how to implement cybersecurity solutions, IoT design best practices, and risk mitigation methodologies to address device and infrastructure threats to IoT solutions.
In this second edition, you will go through some typical and unique vulnerabilities seen within various layers of the IoT technology stack and also learn new ways in which IT and physical threats interact. You will then explore the different engineering approaches a developer/manufacturer might take to securely design and deploy IoT devices. Furthermore, you will securely develop your own custom additions for an enterprise IoT implementation. You will also be provided with actionable guidance through setting up a cryptographic infrastructure for your IoT implementations. You will then be guided on the selection and configuration of Identity and Access Management solutions for an IoT implementation. In conclusion, you will explore cloud security architectures and security best practices for operating and managing cross-organizational, multi-domain IoT deployments.
▶What You Will Learn
⦁ Discuss the need for separate security requirements and apply security engineering principles on IoT devices
⦁ Master the operational aspects of planning, deploying, managing, monitoring, and detecting the remediation and disposal of IoT systems
⦁ Use Blockchain solutions for IoT authenticity and integrity
⦁ Explore additional privacy features emerging in the IoT industry, such as anonymity, tracking issues, and countermeasures
⦁ Design a fog computing architecture to support IoT edge analytics
⦁ Detect and respond to IoT security incidents and compromises
▶Key Features
⦁ Learn best practices to secure your data from the device to the cloud
⦁ Use systems security engineering and privacy-by-design principles to design a secure IoT ecosystem
⦁ A practical guide that will help you design and implement cyber security strategies for your organization
▶Who This Book Is For
This book targets IT Security Professionals and Security Engineers (including pentesters, security architects and ethical hackers) who would like to ensure the security of their organization's data when connected through the IoT. Business analysts and managers will also find this book useful.
▶What this book covers
⦁ Chapter 1, A Brave New World, introduces you to the basics of IoT, its definition, uses, applications, and implementations.
⦁ Chapter 2, Vulnerabilities, Attacks, and Countermeasures, takes you on a tour where you will learn about the various threats and the measures that we can take to counter them.
⦁ Chapter 3, Approaches to Secure Development, focuses on the different engineering approaches a developer/manufacturer might take to securely design and deploy IoT devices.
⦁ Chapter 4, Secure Design of IoT Devices, provides readers with the tools needed to securely develop their own custom additions to an enterprise IoT implementation.
⦁ Chapter 5, Operational Security Life Cycle, introduces a system security life cycle for the IoT that focuses on operational aspects related to the planning, deployment, management, monitoring and detection, remediation, and disposal of IoT systems.
⦁ Chapter 6, Cryptographic Fundamentals for IoT Security Engineering, provides a background on applied cryptography.
⦁ Chapter 7, Identity and Access Management Solutions for the IoT, dives deep into identity and access management for the IoT.
⦁ Chapter 8, Mitigating IoT Privacy Concerns, explores IoT privacy concerns. It will also help you to understand how to address and mitigate such concerns.
⦁ Chapter 9, Setting Up an IoT Compliance Monitoring Program, helps you to explore how to set up an IoT compliance program.
⦁ Chapter 10, Cloud Security for the IoT, explains the concepts of cloud security that are related to the IoT.
⦁ Chapter 11, IoT Incident Response and Forensic Analysis, explores incident management and forensics for the IoT.
