Internet of Things, Threats, Landscape, and Countermeasures
暫譯: 物聯網:威脅、現狀與對策
Shiaeles, Stavros, Kolokotronis, Nicholas
商品描述
Internet of Things (IoT) is an ecosystem comprised of heterogeneous connected devices that communicate to deliver capabilities making our living, cities, transport, energy, and other areas more intelligent. This book delves into the different cyber-security domains and their challenges due to the massive amount and the heterogeneity of devices.
This book introduces readers to the inherent concepts of IoT. It offers case studies showing how IoT counteracts the cyber-security concerns for domains. It provides suggestions on how to mitigate cyber threats by compiling a catalogue of threats that currently comprise the contemporary threat landscape. It then examines different security measures that can be applied to system installations or operational environment and discusses how these measures may alter the threat exploitability level and/or the level of the technical impact.
Professionals, graduate students, researchers, academicians, and institutions that are interested in acquiring knowledge in the areas of IoT and cyber-security, will find this book of interest.
商品描述(中文翻譯)
物聯網(Internet of Things, IoT)是一個由異質連接設備組成的生態系統,這些設備相互通信,以提供使我們的生活、城市、交通、能源及其他領域更智能的能力。本書深入探討了不同的網絡安全領域及其挑戰,這些挑戰源於設備的龐大數量和異質性。
本書向讀者介紹了物聯網的基本概念。它提供了案例研究,展示物聯網如何應對各領域的網絡安全問題。書中還提供了如何減輕網絡威脅的建議,通過編纂當前威脅環境的威脅目錄來實現。接著,它檢視了可以應用於系統安裝或操作環境的不同安全措施,並討論這些措施如何改變威脅的可利用性和/或技術影響的程度。
對於希望在物聯網和網絡安全領域獲取知識的專業人士、研究生、研究人員、學者及機構,本書將會引起他們的興趣。
作者簡介
Stavros Shiaeles is an Assistant Professor in cyber-security at the University of Portsmouth, UK. He worked as an expert in cyber-security and digital forensics in the UK and EU, serving companies and research councils. His research interest span in the broad area of cyber-security and more specifically in OSINT, social engineering, distributed denial-of-service attacks, cloud security, digital forensics, network anomaly detection, and malware mitigation. Dr Shiaeles has authored more than 60 publications in academic journals and conferences, co-chaired many workshops and conferences and actively involved in research projects as Principal Investigator leading his cyber-security research team.
He is currently a Guest Editor in the topical collection "Cyber security, digital forensics and resilience" at Springer's Applied Sciences Journal (since 2019), Topic Editor at MDPI Forensic Sciences Journal (since 2020), Guest editor in the Special Issue "Advancements in Networking and Cyber Security" at MDPI Electronics Journal (2020), Guest editor in the "Special Issue on Novel Cyber-Security Paradigms for Software-defined and Virtualized Systems" at Elsevier Computer Networks Journal (2020), Active member at IEEE Technical Committee on Information Infrastructure and Networking (TCIIN) and a regular reviewer for several prestigious journals.
Further to his academic qualifications, he holds a series of professional certifications, namely EC-Council Certified Ethical Hacker (CEH), EC-Council Advanced Penetration Testing (CAST611), ISACA Cobit 5 Foundation and a Cyberoam Certified Network and Security Professional (CCNSP), and he is EC-Council accredited instructor providing professional certifications training on cyber-security and penetration testing. He is also a Fellow of the BCS and a Fellow of the Higher Education Academy in the UK.
Before entering academia, Dr Shiaeles was in the industry, where he has more than ten years of experience, and he has worked on various aspects of IT and cyber-security, gaining invaluable hands-on knowledge on various systems and software developing.
Nicholas Kolokotronis is an Associate Professor and head of the Cryptography and Security Group at the Department of Informatics and Telecommunications, University of the Peloponnese. He received his B.Sc. in mathematics from the Aristotle University of Thessaloniki, Greece, in 1995, an M.Sc. in highly efficient algorithms (highest honours) in 1998 and a Ph.D. in cryptography in 2003, both from the National and Kapodistrian University of Athens.
Since 2004, he has held visiting positions at the University of Piraeus, University of the Peloponnese, the National and Kapodistrian University of Athens, and the Open University of Cyprus. During 2002-04, he was with the European Dynamics S.A., Greece, as a security consultant. He has been a member of working groups for the provisioning of professional cyber-security training to large organizations, including the Hellenic Telecommunications and Posts Commission (EETT). He has published more than 85 papers in international scientific journals, conferences, and books and has participated in more than 20 EU-funded and national research and innovation projects. He has been a co-chair of conferences (IEEE CSR 2021), workshops (IEEE SecSoft 2019, IEEE CSRIoT 2019, 2020, and ACM EPESec 2020), and special sessions focusing on IoT security. Moreover, he has been a TPC member in many international conferences, incl. IEEE ISIT, IEEE GLOBECOM, IEEE ICC, ARES, and ISC.
He is currently a Guest Editor in "Engineering - cyber security, digital forensics and resilience" area of Springer's Applied Sciences Journal (since 2019) and in the Reviewer Board of MDPI's Cryptography journal (since 2020), whereas he has been an Associate Editor of the EURASIP Journal on Wireless Communications and Networking (2009-17) and a regular reviewer for a number of prestigious journals, incl. IEEE TIFS, IEEE TIT, Springer's DCC, etc. His research interests span the broad areas of cryptography, security, and coding theory.
作者簡介(中文翻譯)
斯塔夫羅斯·希亞勒斯是英國朴茨茅斯大學的網路安全助理教授。他曾在英國和歐盟擔任網路安全和數位取證的專家,為公司和研究委員會提供服務。他的研究興趣涵蓋網路安全的廣泛領域,特別是在開源情報(OSINT)、社交工程、分散式拒絕服務攻擊、雲安全、數位取證、網路異常檢測和惡意軟體緩解等方面。希亞勒斯博士在學術期刊和會議上發表了超過60篇論文,並共同主持了多個研討會和會議,積極參與研究項目,擔任首席研究員,領導他的網路安全研究團隊。
他目前是施普林格應用科學期刊的專題集《網路安全、數位取證與韌性》的客座編輯(自2019年起),MDPI法醫科學期刊的主題編輯(自2020年起),MDPI電子期刊的特刊《網路與網路安全的進展》的客座編輯(2020年),以及愛思唯爾計算機網路期刊的特刊《針對軟體定義和虛擬化系統的新型網路安全範式》的客座編輯(2020年)。他還是IEEE資訊基礎設施與網路技術委員會(TCIIN)的活躍成員,並定期為多個知名期刊擔任審稿人。
除了學術資格外,他還擁有一系列專業認證,包括EC-Council認證的道德駭客(CEH)、EC-Council進階滲透測試(CAST611)、ISACA Cobit 5基礎認證和Cyberoam認證的網路與安全專業人員(CCNSP),並且是EC-Council認可的講師,提供網路安全和滲透測試的專業認證培訓。他還是英國計算機學會(BCS)和高等教育學院的院士。
在進入學術界之前,希亞勒斯博士曾在業界工作,擁有超過十年的經驗,並在IT和網路安全的各個方面工作,獲得了對各種系統和軟體開發的寶貴實務知識。
尼古拉斯·科洛科特羅尼斯是希臘佩洛波尼索斯大學資訊與電信系的副教授及密碼學與安全小組的負責人。他於1995年在希臘塞薩洛尼基的亞里士多德大學獲得數學學士學位,1998年獲得高效演算法碩士學位(最高榮譽),並於2003年獲得雅典國立暨卡波迪斯特里亞大學的密碼學博士學位。
自2004年以來,他在比雷埃夫斯大學、佩洛波尼索斯大學、雅典國立暨卡波迪斯特里亞大學和塞浦路斯開放大學擔任訪問職位。在2002年至2004年間,他在希臘的歐洲動力公司擔任安全顧問。他曾是為大型組織提供專業網路安全培訓的工作小組成員,包括希臘電信與郵政委員會(EETT)。他在國際科學期刊、會議和書籍上發表了超過85篇論文,並參與了超過20個歐盟資助和國家研究與創新項目。他曾擔任會議的共同主席(IEEE CSR 2021)、研討會(IEEE SecSoft 2019、IEEE CSRIoT 2019、2020和ACM EPESec 2020)以及專題會議,專注於物聯網安全。此外,他還是多個國際會議的技術程序委員會成員,包括IEEE ISIT、IEEE GLOBECOM、IEEE ICC、ARES和ISC。
他目前是施普林格應用科學期刊《工程 - 網路安全、數位取證與韌性》領域的客座編輯(自2019年起),以及MDPI密碼學期刊的審稿委員會成員(自2020年起),同時他曾擔任EURASIP無線通訊與網路期刊的副編輯(2009-2017),並定期為多個知名期刊擔任審稿人,包括IEEE TIFS、IEEE TIT、施普林格的DCC等。他的研究興趣涵蓋密碼學、安全性和編碼理論的廣泛領域。
