A case study in applying security design patterns for IoT software system

The Internet of Things (IoT) involves the increasing prevalence of objects and entities with the ability to transfer data over the network automatically. The main problem of IoT software system is that the security has not always been considered. This study applies five security design patterns for the development of an IoT software system. The security issue of unsecure application data is addressed by the security design patterns of secure directory, secure logger and exception manager. The security issues of unsecure wireless communication and unsecure user information are addressed by secure adapter pattern and input validation pattern, respectively.

[1]  Lei Zhang,et al.  An Event-Driven Service-Oriented Architecture for the Internet of Things , 2014, 2014 Asia-Pacific Services Computing Conference.

[2]  Reinhard Schwarz,et al.  A Critical Survey of Security Indicator Approaches , 2012, 2012 Seventh International Conference on Availability, Reliability and Security.

[3]  Jeffrey M. Voas,et al.  Learning Internet-of-Things Security "Hands-On" , 2016, IEEE Security & Privacy.

[4]  Boleslaw K. Szymanski,et al.  Sensors as a Service Oriented Architecture: Middleware for Sensor Networks , 2010, 2010 Sixth International Conference on Intelligent Environments.

[5]  Robert C. Seacord,et al.  Secure Design Patterns , 2009 .

[6]  Qian Zhu,et al.  IOT Gateway: BridgingWireless Sensor Networks into Internet of Things , 2010, 2010 IEEE/IFIP International Conference on Embedded and Ubiquitous Computing.