Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label

ESTIENNE, MATHEW

doi:https://doi.org/

E-Thesis 247 views 78 downloads

Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label / MATHEW ESTIENNE

Swansea University Author: MATHEW ESTIENNE

PDF | E-Thesis

Copyright: The Author, Mathew Estienne, 2024.
Download (26.75MB)

Abstract

No person whom has any knowledge of security in the Internet of Things (IoT) would claim the current landscape is desirable, as exceedingly poor security of devices is routinely exhibited in an ecosystem experiencing exponential growth of devices. If these devices follow past trends in Cyber Securit...

Full description

Published:	Swansea, Wales, UK 2023
Institution:	Swansea University
Degree level:	Master of Research
Degree name:	MSc by Research
Supervisor:	James, P
URI:	https://cronfa.swan.ac.uk/Record/cronfa65623

first_indexed	2024-02-09T18:12:42Z
last_indexed	2024-11-25T14:16:29Z
id	cronfa65623
recordtype	RisThesis
fullrecord	<?xml version="1.0"?><rfc1807><datestamp>2024-04-12T10:40:25.2966885</datestamp><bib-version>v2</bib-version><id>65623</id><entry>2024-02-09</entry><title>Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label</title><swanseaauthors><author><sid>a6e9e6d2133075259381c5863915f344</sid><firstname>MATHEW</firstname><surname>ESTIENNE</surname><name>MATHEW ESTIENNE</name><active>true</active><ethesisStudent>false</ethesisStudent></author></swanseaauthors><date>2024-02-09</date><abstract>No person whom has any knowledge of security in the Internet of Things (IoT) would claim the current landscape is desirable, as exceedingly poor security of devices is routinely exhibited in an ecosystem experiencing exponential growth of devices. If these devices follow past trends in Cyber Security, it is not unreasonable to assume that without intervention another decade of exponentially growing costs attributed to Cyber Crime may lay ahead. After the failure of the voluntary approach to IoT Security, works are now being taken to legislate a minimum security standard.Building from existing proposals, this paper outlines real improvements that could be made to current ongoing works, with the intention of providing incentive for manufacturers to improve device security in the IoT sector and reduce the timeline for routine deployment of secured devices.Incorporating strategies developed in other industries, as well as security requirements from across international borders, a point-of-sale user focused label is proposed, which can be easily interpreted by non-technical users. Intending to provoke curiosity and fully reassure the end-user, a two-layer system is chosen which allows the conveyance of more detailed information than could fit on a physical label.</abstract><type>E-Thesis</type><journal/><volume/><journalNumber/><paginationStart/><paginationEnd/><publisher/><placeOfPublication>Swansea, Wales, UK</placeOfPublication><isbnPrint/><isbnElectronic/><issnPrint/><issnElectronic/><keywords/><publishedDay>24</publishedDay><publishedMonth>10</publishedMonth><publishedYear>2023</publishedYear><publishedDate>2023-10-24</publishedDate><doi/><url/><notes>Part of this thesis has been redacted to protect personal information</notes><college>COLLEGE NANME</college><CollegeCode>COLLEGE CODE</CollegeCode><institution>Swansea University</institution><supervisor>James, P</supervisor><degreelevel>Master of Research</degreelevel><degreename>MSc by Research</degreename><apcterm/><funders/><projectreference/><lastEdited>2024-04-12T10:40:25.2966885</lastEdited><Created>2024-02-09T13:16:18.4005088</Created><path><level id="1">Faculty of Science and Engineering</level><level id="2">School of Mathematics and Computer Science - Computer Science</level></path><authors><author><firstname>MATHEW</firstname><surname>ESTIENNE</surname><order>1</order></author></authors><documents><document><filename>65623__29536__c4fb3cad974b4b879042f4fb3002f881.pdf</filename><originalFilename>2023_Estienne_M.final.65623.pdf</originalFilename><uploaded>2024-02-09T18:06:51.6154020</uploaded><type>Output</type><contentLength>28047844</contentLength><contentType>application/pdf</contentType><version>E-Thesis</version><cronfaStatus>true</cronfaStatus><documentNotes>Copyright: The Author, Mathew Estienne, 2024.</documentNotes><copyrightCorrect>true</copyrightCorrect><language>eng</language></document></documents><OutputDurs/></rfc1807>
spelling	2024-04-12T10:40:25.2966885 v2 65623 2024-02-09 Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label a6e9e6d2133075259381c5863915f344 MATHEW ESTIENNE MATHEW ESTIENNE true false 2024-02-09 No person whom has any knowledge of security in the Internet of Things (IoT) would claim the current landscape is desirable, as exceedingly poor security of devices is routinely exhibited in an ecosystem experiencing exponential growth of devices. If these devices follow past trends in Cyber Security, it is not unreasonable to assume that without intervention another decade of exponentially growing costs attributed to Cyber Crime may lay ahead. After the failure of the voluntary approach to IoT Security, works are now being taken to legislate a minimum security standard.Building from existing proposals, this paper outlines real improvements that could be made to current ongoing works, with the intention of providing incentive for manufacturers to improve device security in the IoT sector and reduce the timeline for routine deployment of secured devices.Incorporating strategies developed in other industries, as well as security requirements from across international borders, a point-of-sale user focused label is proposed, which can be easily interpreted by non-technical users. Intending to provoke curiosity and fully reassure the end-user, a two-layer system is chosen which allows the conveyance of more detailed information than could fit on a physical label. E-Thesis Swansea, Wales, UK 24 10 2023 2023-10-24 Part of this thesis has been redacted to protect personal information COLLEGE NANME COLLEGE CODE Swansea University James, P Master of Research MSc by Research 2024-04-12T10:40:25.2966885 2024-02-09T13:16:18.4005088 Faculty of Science and Engineering School of Mathematics and Computer Science - Computer Science MATHEW ESTIENNE 1 65623__29536__c4fb3cad974b4b879042f4fb3002f881.pdf 2023_Estienne_M.final.65623.pdf 2024-02-09T18:06:51.6154020 Output 28047844 application/pdf E-Thesis true Copyright: The Author, Mathew Estienne, 2024. true eng
title	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
spellingShingle	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label MATHEW ESTIENNE
title_short	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
title_full	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
title_fullStr	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
title_full_unstemmed	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
title_sort	Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label
author_id_str_mv	a6e9e6d2133075259381c5863915f344
author_id_fullname_str_mv	a6e9e6d2133075259381c5863915f344_***_MATHEW ESTIENNE
author	MATHEW ESTIENNE
author2	MATHEW ESTIENNE
format	E-Thesis
publishDate	2023
institution	Swansea University
college_str	Faculty of Science and Engineering
hierarchytype
hierarchy_top_id	facultyofscienceandengineering
hierarchy_top_title	Faculty of Science and Engineering
hierarchy_parent_id	facultyofscienceandengineering
hierarchy_parent_title	Faculty of Science and Engineering
department_str	School of Mathematics and Computer Science - Computer Science{{{_:::_}}}Faculty of Science and Engineering{{{_:::_}}}School of Mathematics and Computer Science - Computer Science
document_store_str	1
active_str	0
description	No person whom has any knowledge of security in the Internet of Things (IoT) would claim the current landscape is desirable, as exceedingly poor security of devices is routinely exhibited in an ecosystem experiencing exponential growth of devices. If these devices follow past trends in Cyber Security, it is not unreasonable to assume that without intervention another decade of exponentially growing costs attributed to Cyber Crime may lay ahead. After the failure of the voluntary approach to IoT Security, works are now being taken to legislate a minimum security standard.Building from existing proposals, this paper outlines real improvements that could be made to current ongoing works, with the intention of providing incentive for manufacturers to improve device security in the IoT sector and reduce the timeline for routine deployment of secured devices.Incorporating strategies developed in other industries, as well as security requirements from across international borders, a point-of-sale user focused label is proposed, which can be easily interpreted by non-technical users. Intending to provoke curiosity and fully reassure the end-user, a two-layer system is chosen which allows the conveyance of more detailed information than could fit on a physical label.
published_date	2023-10-24T20:28:27Z
_version_	1821348103571111936
score	11.04748

Expanding the UK Secure by Design proposal for a usable consumer-focused IoT security label / MATHEW ESTIENNE

Similar Items