Abstract
Assessing the security of IoT-based smart environments such as smart homes and smart cities is becoming fundamentally essential to implementing the correct control measures and effectively reducing security threats and risks brought about by deploying IoT-based smart technologies. The problem, however, is in finding security standards and assessment frameworks that best meets the security requirements as well as comprehensively assesses and exposes the security posture of IoT-based smart environments. To explore this gap, this paper presents a review of existing security standards and assessment frameworks which also includes several NIST special publications on security techniques highlighting their primary areas of focus to uncover those that can potentially address some of the security needs of IoT-based smart environments. Cumulatively a total of 80 ISO/IEC security standards, 32 ETSI standards and 37 different conventional security assessment frameworks which included 7 NIST special publications on security techniques were reviewed. To present an all-inclusive and up-to-date state-of-the-art research, the review process considered both published security standards and assessment frameworks as well as those under development. The findings show that most of the conventional security standards and assessment frameworks do not directly address the security needs of IoT-based smart environments but have the potential to be adapted into IoT-based smart environments. With this insight into the state-of-the-art research on security standards and assessment frameworks, this study helps advance the IoT field by opening new research directions as well as opportunities for developing new security standards and assessment frameworks that will address future IoT-based smart environments security concerns. This paper also discusses open problems and challenges related to IoT-based smart environments security issues. As a new contribution, a taxonomy of challenges for IoT-based smart environment security concerns drawn from the extensive literature examined during this study is proposed in this paper which also maps the identified challenges to potential proposed solutions.
Highlights
The Internet of Things (IoT) is relatively a new and emerging technology that is gaining popularity among many stakeholders
This paper explicitly focused on existing conventional security standards and assessment frameworks and their potentials to be adapted to IoT-based smart environments
Given that the objective is to review the current state of the art of security standards and assessment frameworks, this holds as the guiding principle that shows the key activities that could be leveraged for IoT-based smart environments
Summary
The Internet of Things (IoT) is relatively a new and emerging technology that is gaining popularity among many stakeholders. Confronted by the security challenges in IoT-based smart environments, the authors in this paper conducted a review of existing conventional security standards and assessment frameworks highlighting their primary areas of focus to uncover those that can potentially address some of the security needs of IoT-based smart environments. The findings of this study can help IoT practitioners, researchers and other stakeholders understand the state-of-the-art of the domain as well as help them identify new research directions and spark further discussions on the development of new security standards and assessment frameworks to address existing and future security problems in IoT-based smart environments. This paper aims to fulfil the following objectives: 1) To review existing security standards and assessment frameworks which include NIST special publications on security techniques to uncover their primary areas of focus and exposed the state-of-the-art and background of the domain.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
