Cyber‐Assurance Through Embedded Security for the Internet of Things

The Internet of Things (IoT) comprises billions of Internet‐connected devices (ICD) or "things", each of which can sense, communicate, compute, and potentially actuate and can have intelligence, multimodal interfaces, physical/virtual identities, and attributes. Cyber‐assurance is the justified confidence that networked systems are adequately secure to meet operational needs, even in the presence of attacks, failures, accidents, and unexpected events. The cyber‐assurance recognition strategy is to define only the service‐level interfaces and leave out domain‐specific implementation details. Once the recognition of a cyber‐attack has been identified from the recognition process, the fortification process takes place. Reestablishment is a means to return the ICDs to its operational condition after the cyber‐attack through remapping to a different route since the ICD was under attack. When the IoT technologies are used as part of mission critical systems, the IoT services should be survivable in order to support the important missions.