Hello, welcome and thanks for sharing your paper! Some interesting data points in there? may I ask where the vulnerabilities data points come from (e.g. 90% of devices with PII, etc.)?
For your reading, there is some useful information on the IoTivity security code and design on the IoTivity wiki (https://wiki.iotivity.org/), which you may find interesting. The security architecture for IoTivity is based on the Open Connectivity Framework (OCF) Security Specification developed by the OCF Security Work Group. The most recent released specifications can be found on the openconnectivity.org website. Note that the specifications are available to members only, but a basic membership does get you read-only access. If you?re interested in the architecture behind the IoTivity Security Layer, take a look there. If after reading through the IoTivity documentation and code, and perhaps joining OCF and reading the Security Specification 1.1.0, you think you would like to contribute further, please circle back to this (or the OCF Security WG) mailing list. Thanks, Nathan Heldt-Sheller Intel Corp. From: iotivity-dev-bounces at lists.iotivity.org [mailto:[email protected]] On Behalf Of saurabh shandilya Sent: Friday, November 18, 2016 4:45 AM To: iotivity-dev at lists.iotivity.org Subject: [dev] IoT security design/framework Hey all, I am glad joining Iotivity mailing list. :) I just joined Iotivity after a doing pretty much research on the topic of IoT. As of now, I am still trying to understand the whole Iotivity architecture. I and my friend have been developing thoughts on this for quite a time now, specially after the famous IoT attacks recently. Thus we came up with a IoT security design framework. I would like to request you people to kindly give a look the the design and proposed framework and I sincerely hope that I may be able to polish the idea and make it usable. My vision is that with such a framework or its improvisations the security threat to IoT devices can be minimized. Really looking forward for your feedback. I am hoping that if at all possible, we can contribute for the same. The link for the website : https://grim-skull-10311.herokuapp.com/ It is quite buggy as of now. But the whitepaper and the presentation are seperately at Github too. https://github.com/tightiot/iotsecure Regards, -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.iotivity.org/pipermail/iotivity-dev/attachments/20161118/574888e3/attachment.html>
