TY - JOUR
T1 - The rise of ransomware and emerging security challenges in the Internet of Things
AU - Yaqoob, Ibrar
AU - Ahmed, Ejaz
AU - Rehman, Muhammad Habib ur
AU - Ahmed, Abdelmuttlib Ibrahim Abdalla
AU - Al-garadi, Mohammed Ali
AU - Imran, Muhammad
AU - Guizani, Mohsen
N1 - Funding Information:
Imran’s work is supported by the Deanship of Scientific Research at King Saud University through Research group No. (RG # 1435-051).
Publisher Copyright:
© 2017 Elsevier B.V.
PY - 2017/12/24
Y1 - 2017/12/24
N2 - With the increasing miniaturization of smartphones, computers, and sensors in the Internet of Things (IoT) paradigm, strengthening the security and preventing ransomware attacks have become key concerns. Traditional security mechanisms are no longer applicable because of the involvement of resource-constrained devices, which require more computation power and resources. This paper presents the ransomware attacks and security concerns in IoT. We initially discuss the rise of ransomware attacks and outline the associated challenges. Then, we investigate, report, and highlight the state-of-the-art research efforts directed at IoT from a security perspective. A taxonomy is devised by classifying and categorizing the literature based on important parameters (e.g., threats, requirements, IEEE standards, deployment level, and technologies). Furthermore, a few credible case studies are outlined to alert people regarding how seriously IoT devices are vulnerable to threats. We enumerate the requirements that need to be met for securing IoT. Several indispensable open research challenges (e.g., data integrity, lightweight security mechanisms, lack of security software's upgradability and patchability features, physical protection of trillions of devices, privacy, and trust) are identified and discussed. Several prominent future research directions are provided.
AB - With the increasing miniaturization of smartphones, computers, and sensors in the Internet of Things (IoT) paradigm, strengthening the security and preventing ransomware attacks have become key concerns. Traditional security mechanisms are no longer applicable because of the involvement of resource-constrained devices, which require more computation power and resources. This paper presents the ransomware attacks and security concerns in IoT. We initially discuss the rise of ransomware attacks and outline the associated challenges. Then, we investigate, report, and highlight the state-of-the-art research efforts directed at IoT from a security perspective. A taxonomy is devised by classifying and categorizing the literature based on important parameters (e.g., threats, requirements, IEEE standards, deployment level, and technologies). Furthermore, a few credible case studies are outlined to alert people regarding how seriously IoT devices are vulnerable to threats. We enumerate the requirements that need to be met for securing IoT. Several indispensable open research challenges (e.g., data integrity, lightweight security mechanisms, lack of security software's upgradability and patchability features, physical protection of trillions of devices, privacy, and trust) are identified and discussed. Several prominent future research directions are provided.
KW - Authentication
KW - Internet of Things
KW - Ransomware
KW - Security
KW - Trust
UR - http://www.scopus.com/inward/record.url?scp=85029804365&partnerID=8YFLogxK
U2 - 10.1016/j.comnet.2017.09.003
DO - 10.1016/j.comnet.2017.09.003
M3 - Article
AN - SCOPUS:85029804365
SN - 1389-1286
VL - 129
SP - 444
EP - 458
JO - Computer Networks
JF - Computer Networks
ER -