A Security Unified Model for the Internet of Things (IoT) Residential Gateway Using Model-Based Systems Engineering Open Access
Downloadable ContentDownload PDF
It is predicted that there will be 50 billion or more connected devices by the year2020, ranging from connected wearable watches to smart cars and beyond. We areliving in a true Internet of Things (IoT). On February 13, 2015, at the CyberSecurity Summit at Stanford University in California, former President Obamaannounced an executive order directing more data sharing on network threatsbetween government and businesses. Both government public sectors and U.S.companies are facing new security challenges in protecting critical infrastructures,where software applications in cloud computing platform control all IoT systemsand interact in a real-time mode with existing physical environments, such as powersystems, water systems, banking systems, healthcare systems, and so on. Thesepolicies are mandated to reinforce the need for holistic thinking about security andrisk management at large-scale and future-proof design. The National Institute ofStandards and Technology (NIST) was assigned to lead the development of aframework to reduce cyber risks to critical infrastructure called the “CybersecurityFramework,” which includes a set of standards, methodologies, procedures, bestpractices for information security, and processes that align policy, business, andtechnological approaches to address cyber risks. The NIST framework is one of themost complex IT frameworks. Implementation and governance of such a complexIT framework is an opportunity to fully utilize systems engineering processesvii(SEPs) to model this IoT security framework (NIST 2015). Both private sectors andgovernmental entities are responsible for making IoT a secured landscape to protecttheir consumers and citizens. “Additionally, civil society groups andnongovernmental organizations played key roles in the development of the Internetand continue to analyze and evaluate private-sector practices and to establish norms,expectations, and principles for online behavior. Crucially, the Internet’s users mustbear responsibility and learn to use tools that enable a safe and secure onlineexperience” (Senges, Ryan, Whitt & Cerf, 2016).This Praxis focuses on using model-based systems engineering to introduce asoftware-defined integrated security unified model (iSUM) for an IoT residentialgateway that can lead to the reduction of security vulnerability from attacks and thedetection of security issues in the design phase of a systems engineering lifecycle.Model-based systems engineering (MBSE) has become one of the turn-key solutionsin systems engineering practices. Per the International Council on SystemsEngineering (INCOSE), MBSE is the formalized application of modeling to supportsystem requirements, design, analysis, verification, and validation processthroughout the system’s lifecycle. This work defines the enabling MBSE as themodernized systems engineering process that aims to provide a holistic modelcentricmethodology to address IoT security for residential gateway design. After athorough literature review of available system engineering methods for IoT securitydesign, an IoT iSUM is built along with a case study example demonstratingsuccessful use of the iSUM.