Practical Internet of Things Security

Front Cover
Packt Publishing Ltd, Jun 29, 2016 - Computers - 336 pages
0 Reviews
Reviews aren't verified, but Google checks for and removes fake content when it's identified

A practical, indispensable security guide that will navigate you through the complex realm of securely building and deploying systems in our IoT-connected world

About This BookLearn to design and implement cyber security strategies for your organizationLearn to protect cyber-physical systems and utilize forensic data analysis to beat vulnerabilities in your IoT ecosystemLearn best practices to secure your data from device to the cloudGain insight into privacy-enhancing techniques and technologiesWho This Book Is For

This book targets IT Security Professionals and Security Engineers (including pentesters, security architects and ethical hackers) who would like to ensure security of their organization's data when connected through the IoT. Business analysts and managers will also find it useful.

What You Will LearnLearn how to break down cross-industry barriers by adopting the best practices for IoT deploymentsBuild a rock-solid security program for IoT that is cost-effective and easy to maintainDemystify complex topics such as cryptography, privacy, and penetration testing to improve your security postureSee how the selection of individual components can affect the security posture of the entire systemUse Systems Security Engineering and Privacy-by-design principles to design a secure IoT ecosystemGet to know how to leverage the burdgening cloud-based systems that will support the IoT into the future.In Detail

With the advent of Intenret of Things (IoT), businesses will be faced with defending against new types of threats. The business ecosystem now includes cloud computing infrastructure, mobile and fixed endpoints that open up new attack surfaces, a desire to share information with many stakeholders and a need to take action quickly based on large quantities of collected data. . It therefore becomes critical to ensure that cyber security threats are contained to a minimum when implementing new IoT services and solutions. . The interconnectivity of people, devices, and companies raises stakes to a new level as computing and action become even more mobile, everything becomes connected to the cloud, and infrastructure is strained to securely manage the billions of devices that will connect us all to the IoT. This book shows you how to implement cyber-security solutions, IoT design best practices and risk mitigation methodologies to address device and infrastructure threats to IoT solutions.

This book will take readers on a journey that begins with understanding the IoT and how it can be applied in various industries, goes on to describe the security challenges associated with the IoT, and then provides a set of guidelines to architect and deploy a secure IoT in your Enterprise. The book will showcase how the IoT is implemented in early-adopting industries and describe how lessons can be learned and shared across diverse industries to support a secure IoT.

Style and approach

This book aims to educate readers on key areas in IoT security. It walks readers through engaging with security challenges and then provides answers on how to successfully manage IoT security and build a safe infrastructure for smart devices. After reading this book, you will understand the true potential of tools and solutions in order to build real-time security intelligence on IoT networks.


What people are saying - Write a review

We haven't found any reviews in the usual places.


A Brave New World
Vulnerabilities Attacks and Countermeasures
Security Engineering for IoT Development
The IoT Security Lifecycle
Cryptographic Fundamentals for IoT Security Engineering
Identity and Access Management Solutions for the IoT
Mitigating IoT Privacy Concerns
Setting Up a Compliance Monitoring Program for the IoT
Cloud Security for the IoT
IoT Incident Response

Other editions - View all

Common terms and phrases

About the author (2016)

Brian Russell is a chief engineer focused on cyber security solutions for Leidos ( He oversees the design and development of security solutions and the implementation of privacy and trust controls for customers, with a focus on securing Internet of Things (IoT). Brian leads efforts that include security engineering for Unmanned Aircraft Systems (UAS) and connected vehicles and development security systems, including high assurance cryptographic key management systems. He has 16 years of information security experience. He serves as chair of the Cloud Security Alliance (CSA) Internet of Things (IoT) Working Group, and as a member of the Federal Communications Commission (FCC) Technological Advisory Council (TAC) Cybersecurity Working Group. Brian also volunteers in support of the Center for Internet Security (CIS) 20 Critical Security Controls Editorial Panel and the Securing Smart Cities (SSC) Initiative ( Join the Cloud Security Alliance (CSA) IoT WG @ You can contact Brian at

Drew Van Duren currently works at Leidos as a senior cryptographic and cybersecurity engineer, highlighting 15 years of support to commercial, US Department of Defense, and US Department of Transportation (USDOT) customers in their efforts to secure vital transportation and national security systems. Originally an aerospace engineer, his experience evolved into cyber-physical (transportation system) risk management, secure cryptographic communications engineering, and secure network protocol design for high assurance DoD systems. Drew has provided extensive security expertise to the Federal Aviation Administration's Unmanned Aircraft Systems (UAS) integration office and supported RTCA standards body in the development of cryptographic protections for unmanned aircraft flying in the US National Airspace System. He has additionally supported USDOT Federal Highway Administration (FHWA) and the automotive industry in threat modeling and security analysis of connected vehicle communications design, security systems, surface transportation systems, and cryptographic credentialing operations via the connected vehicle security credential management system (SCMS). Prior to his work in the transportation industry, Drew was a technical director, managing two of the largest (FIPS 140-2) cryptographic testing laboratories and frequently provided cryptographic key management and protocol expertise to various national security programs. He is a licensed pilot and flies drone systems commercially, and is also a co-founder of Responsible Robotics, LLC, which is dedicated to safe and responsible flight operations for unmanned aircraft. You can reach Drew at

Bibliographic information