Security Experiences in IoT based applications for Building and Factory Automation

Abstract

Industry 4.0 and Industrial Internet of Things (IIoT) are promoting the connection of millions of devices, that once were seen as unconnectable, into a huge network, to be used in a large number of applications, from autonomous vehicles to industrial control systems, passing through building automation systems. These paradigm rely on the adoption of Cyber Physical Systems complemented with Internet of Things (IoT) technologies and artificial intelligence techniques. These type of systems are responsible for collecting, processing and exchanging a vast amount of data, and for that reason, it is imperative to assure data integrity and protection against malicious modifications and attacks to ensure a safe and reliable operation. Data thefts and cyber attacks in general represent a significant danger, however, cyber attacks on IoT systems can be specially critical due to their proximity with humans, enhancing the risk of physical damage. This paper highlights the importance of securing these systems, pursuing a safer operation, having in mind the amount of security vulnerabilities found in embedded devices. For this purpose, this article studies possible security threats and weakness in two case studies coming from different IoT domains, i.e. building automation and factory automation, while seeking for solutions to improve these systems' security.