IEEE - 56998
Securing the Future of IoT: A Comprehensive
2023 14th International Conference on Computing Communication and Networking Technologies (ICCCNT) | 979-8-3503-3509-5/23/$31.00 ©2023 IEEE | DOI: 10.1109/ICCCNT56998.2023.10307306
Framework for Real-Time Attack Detection and
Mitigation in IoT Networks
Aviral Srivastava
Amity School of engineering and technology
Amity University Rajasthan
Jaipur, India
[email protected]
[email protected]
ORCID:- 0000-0002-6724-4662
Abstract—Increased security complexity and variety come
with IoT devices. Existing security solutions generally fail to
handle multiple difficulties, particularly in real-time attack
detection and response. This research introduces a novel,
comprehensive architecture that synergistically incorporates
various cutting-edge security measures to protect IoT networks
from all cyber threats. The proposed framework incorporates
NodeMCU ESP8266-based real-time response, safe boot,
hardware-based security modules, and zero trust architecture. It
recommends incorporating blockchain for security, real-time
logging and monitoring, machine learning-assisted intrusion
detection, and indicators of compromise (IOCs) for incident
response. For improved malware analysis and threat mitigation,
integration of APIs for smooth communication with third-party
services such as VirusTotal and Hybrid Analyzer is suggested.
This paper also discusses data encryption, updates and patching,
identity and access management, risk assessment and threat
modelling, incident response and recovery, and privacy. This
holistic approach to IoT security provides a robust, flexible, and
scalable framework to address the changing threat landscape and
growing complexity of IoT ecosystems. The proposed methodology
defends IoT networks against sophisticated cyberattacks through
careful analysis and empirical validation. In an increasingly
interconnected world, this research could be useful for
practitioners, academics, and stakeholders aiming to strengthen
IoT infrastructure resilience.
Keywords—Internet of Things (IoT), Network Security, Machine
Learning, Blockchain, Intrusion Detection, Secure Boot
I. INTRODUCTION
1.1 IoT adoption background
The Internet of Things (IoT) has experienced rapid growth
in industry, healthcare, transportation, and smart homes. The
efficiency, automation, and data-driven decision-making
capabilities of IoT devices drive their adoption. Billions of IoT
devices are expected to be connected by the end of the decade,
creating a deeply networked environment.[10]
14th ICCCNT IEEE Conference
Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
Usha Jain*
Department of Computer Science and Engineering,
Manipal University Jaipur, Jaipur,
India
ORCID:- 0000-0002-6333-8426
1.2 Secure IoT networks
The relentless growth of IoT necessitates network security.
IoT networks are vulnerable to several cyberattacks due to the
complex network of interconnected devices. Unaddressed risks
may lead to data breaches, privacy violations, and vital
infrastructure disruptions. These security incidents can result in
brand damage and regulatory penalties, thus underlining the
necessity for robust IoT network security.[11]
1.3 Real-time attack detection and mitigation
Advanced security solutions are needed for real-time attack
detection and mitigation due to the rapidly changing threat
landscape and the complexity of IoT systems. Traditional
security procedures generally fall short in solving many IoT
network difficulties, thereby highlighting the need for
innovative approaches that can swiftly identify and neutralise
threats. Real-time solutions can help mitigate threats and speed
up cleanup, improving IoT network resilience. The study
presented here provides a comprehensive framework that
combines advanced technologies and approaches for real-time
attack detection and mitigation in IoT networks, contributing to
the knowledge base in this critical field.
II. LITERATURE REVIEW
Researchers have been exploring a variety of different ways for
attack detection and mitigation as a result of the ever-increasing
complexity of IoT security. Gelenbe et al. (2020) [1] proposed
a system for the detection and mitigation of Internet of Things
(IoT) network attacks. They emphasized the significance of
constant monitoring and learning for the protection of
networks. The results of their work provide a basis for
comprehending the fundamental aspects that make up an
efficient Internet of Things security framework.
 IEEE - 56998
Detecting and protecting against distributed denial-of-service
(DDoS) assaults in IoT networks has been accomplished with
the application of adaptive machine learning. Aslam et al.
(2022) [2] presented a system for SDN-enabled IoT that relies
on adaptive machine learning approaches to recognize and
address DDoS threats. This system was developed for the
Internet of Things. Their work sheds light on the potential of
machine learning to enhance the security solutions for the
internet of things.
Computing at the edge of the network has also been
investigated for use in the detection and mitigation of DDoS
attacks. An Internet of Things (IoT)-based DDoS attack
detection and mitigation system employing the edge of
software-defined networking (SDN) was proposed by Yang et
al. (2019) [3]. The authors emphasized the importance that edge
computing plays in alleviating the burden of network security
and boosting the overall system performance.
Mihoub et al. (2022) [4] conducted research on the application
of looking-back-enabled machine learning algorithms in
Internet of Things environments with the goal of detecting and
mitigating denial of service (DoS) attacks. Their technique
highlights the value of adding machine learning into Internet of
Things security frameworks in order to improve attack
detection and mitigation.
For dynamically detecting and mitigating DoS attacks in the
IoT, prototypes based on SDN have been created. An SDN-
based system was shown by Binu et al. (2021), [5] and it
demonstrated the promise of software-defined networking to
improve the security of the internet of things by providing
attack mitigation measures that are both more effective and
more flexible.
Using an SDN-cloud architecture, Ravi and Shalinie (2020) [6]
suggested a learning-driven detection and mitigation solution
for Distributed Denial of Service attacks in the Internet of
Things (IoT). Their research highlighted the advantages of
combining SDN with cloud computing for the development of
IoT security solutions that are both more robust and scalable.
Patel (2023) [7] created an attack detection and mitigation
technique utilising a novel authentication model made possible
by an optimised neural network. This scheme was applied to the
context of smart healthcare. Their research emphasises the
importance of domain-specific security considerations as well
as the application of advanced security solutions in specialised
Internet of Things contexts.
These studies collectively highlight how important it is to
improve the security of the internet of things by utilising more
complex methods, cutting-edge technologies, and solutions that
are relevant to particular domains. In order to deliver an all-
encompassing, rock-solid, and upgradable security solution for
Internet of Things networks, the framework that we have
presented builds on these findings.
Identify applicable funding agency here. If none, delete this text box.
14th ICCCNT IEEE Conference
Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
III. CORE COMPONENTS OF THE PROPOSED FRAMEWORK
3.1 NodeMCU-ESP8266 real-time reaction
Benefits and implementation:
Enabled by the NodeMCU ESP8266, a low-cost microcontroller
with Wi-Fi, real-time reaction involves constant monitoring of
network traffic for anomalies potentially indicating attacks.
Upon detecting suspicious behaviour, the NodeMCU ESP8266
sends deauthentication messages to disconnect the potentially
compromised IoT device from the network. This action isolates
the device, preventing contagion and limiting network
propagation by the attacker. A real-time reaction based on the
NodeMCU ESP8266 offers several advantages. Rapid response
to new threats minimizes security incidents and expedites
remediation. Additionally, the NodeMCU ESP8266 negates the
need for expensive hardware or network infrastructure
modifications, rendering the solution cost-effective and simple
to deploy. Restrictions and Improvements: Despite its
advantages, a real-time response based on NodeMCU ESP8266
has certain limitations. Advanced attackers can evade detection,
rendering real-time reaction ineffective. Deauthentication
packets may also fail to address IoT device software or firmware
vulnerabilities. Enhancements to the NodeMCU ESP8266 could
involve integrating machine learning techniques to detect even
the most elusive threats. Incorporation of real-time response,
secure boot, and hardware-based security could reinforce the
overall foundation.
3.2 Secure boot
Validating firmware and software:
The proposed framework emphasizes the importance of
secure boot for verification of firmware and software in IoT
devices during the boot process. Secure boot authenticates
firmware and software using cryptographic signatures. If an
anomaly is identified, the device may be prevented from booting
or restored to a known-good state, thereby protecting the IoT
network from compromised devices.
Preventing Unauthorized Changes:
Secure boot employs cryptographic keys, digital signatures, and
certificate authority to inhibit firmware and software changes. It
establishes a chain of trust to authenticate and verify each stage
of the boot process, culminating in application software
validation. This rigorous approach safeguards IoT devices
against firmware or software threats.
3.3 Hardware-based security
Hardware security modules:
Hardware-based security techniques, integral to the
framework, are employed to defend IoT devices from attacks.
Hardware Security Modules (HSMs) provide secure, tamper-
resistant storage for sensitive data including encryption keys and
digital certificates. By segregating crucial cryptographic
activities in the HSM, the system mitigates the risk of IoT device
data theft.
Tamper-resistant storage and secure cryptographic
operations:
 IEEE - 56998
HSMs provide cryptographic and secure storage benefits.
Firstly, tamper-resistant features detect and respond to physical
or environmental tampering attempts, protecting crucial data
even against determined adversaries. Secondly, HSMs offer a
variety of cryptographic techniques for secure encryption,
decryption, signing, and verification. Inclusion of HSMs in the
IoT security architecture guards’ crucial data and cryptographic
operations, making success of insecure implementations or
storage vulnerabilities less likely.
3.4 Zero trust architecture
Benefits and principles:
Zero Trust Architecture (ZTA) operates under the
assumption that no entity, whether internal or external, should
be trusted. Accordingly, every access attempt requires
validation, authorization, and monitoring. This comprehensive
security paradigm replaces the perimeter-centric model, where
internal resources are trusted, with a more detailed, context-
aware model accounting for the increasing porousness of
modern networks. Implementation of a zero-trust design
enhances IoT networks in several ways. Firstly, rigorous access
controls and segmentation of network resources minimize the
risk of unauthorized access and lateral movement. Secondly, it
enables real-time security adjustments to evolving threats.
Lastly, a zero trust architecture promotes continuous evaluation
and improvement of security by organizations.
Implementation issues:
Despite its benefits, implementation of a zero-trust architecture
may present challenges. Firstly, deployment of a zero-trust
architecture can be complex and expensive, especially for large
IoT networks. Secondly, integrating zero trust-incompatible
legacy systems and devices can prove challenging. A phased
approach to zero trust adoption, starting with prioritizing key
assets and gradually expanding the infrastructure, can address
these concerns. Software-defined networking (SDN) and
network function virtualization (NFV) can simplify the
implementation and management of a zero-trust architecture.
Until compatibility with zero trust is achieved, legacy systems
may necessitate compensatory controls such as network
segmentation or intrusion detection systems.
Fig 1. core componentS listed along with its subpoints
14th ICCCNT IEEE Conference
Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
IV. INTEGRATION OF CUTTING-EDGE TECHNOLOGIES
4.1 Blockchain for enhanced security
Blockchain technology is integrated into the framework to
bolster IoT network security. The architecture secures IoT data
exchanges through a decentralized, immutable ledger.
Consensus methods and cryptography inherent in blockchain
technology prevent data tampering and falsification, thereby
fostering trust and transparency among network nodes.[9]
4.2 Real-time logging and monitoring
Real-time logging and monitoring become crucial for detecting
and analysing emerging risks. By carefully monitoring network
traffic, system events, and user activity, the framework can
identify potentially harmful patterns. This exhaustive approach
facilitates swift response and clean-up, mitigating security
incident damage and providing valuable insights for enhancing
security measures.[13]
4.3 Machine-learning-assisted intrusion detection
Intrusion detection capabilities of the framework are augmented
by machine learning algorithms. Capable of processing vast
amounts of data, these sophisticated algorithms can identify
subtle correlations and anomalies that could be overlooked by
rule-based detection methods. Machine learning-assisted
intrusion detection systems continuously refine their models,
thereby enabling adaptive responses to evolving threats.[12]
4.4 Indicators of compromise (IOCs) for swift incident response
Indicators of compromise (IOCs) serve to expedite incident
response within the proposed framework. Unusual network
traffic, unauthorized access attempts, and suspicious file
alterations serve as IOCs, signifying potential security
vulnerabilities. By establishing a comprehensive repository of
IOCs and integrating them into the framework's detection
algorithms, the incident response team can rapidly identify and
neutralise threats, thereby reducing security incidents and
accelerating recovery.
Collaboration APIs
1. VirusTotal
The proposed framework leverages APIs to facilitate
collaboration with third-party services, thus enhancing security.
VirusTotal, a malware analysis platform, amalgamates the
scanning capabilities of multiple antivirus engines. Suspicious
files can be swiftly verified for potential threats by submitting
them to VirusTotal through APIs, thereby leveraging the
collective strength of multiple antivirus engines for improved
malware detection within the framework.
2.Hybrid Analyzer
Hybrid Analyzer, a sophisticated malware analysis tool, is also
compatible with the framework. Suspected malware samples
can be transmitted to Hybrid Analyzer via APIs, enabling the
framework to gain insights into malware activities,
communication patterns, and persistence mechanisms. These
insights can be utilized by the security operations center (SOC)
staff to devise effective containment and remediation
 IEEE - 56998
procedures, thereby strengthening the cyber resilience of the
framework.
Fig 2. High-level architecture overview
V. IMPLEMENTATION OF THE COMPREHENSIVE IOT SECURITY
FRAMEWORK
This section delineates the integration of fundamental
components and state-of-the-art technology into the proposed
IoT security architecture. Following these procedures,
organizations can construct a robust and secure IoT architecture
that mitigates cyber threats and ensures integrity and availability
of IoT devices and data.[14]
5.1 Implementing Core Components
1. NodeMCU ESP8266-based Real-Time Response:
Instruct the module to scrutinize network traffic and
identify suspicious activity. Upon detection, the
module should initiate deauthentication packets to
disconnect affected devices from the network. For
identifying advanced attacks and bypass methods,
deploy machine learning algorithms.
2. Secure Boot: During secure boot, ensure integrity
check of firmware and software on all networked IoT
devices. Implement a method for cryptographic
signature verification that compares existing firmware
and software to a trusted reference. Any unauthorized
14th ICCCNT IEEE Conference
Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
alterations should obstruct booting or initiate reset to a
known-good state.
3. Hardware-Based Security: Deploy hardware security
modules (HSMs) for storing encryption keys in IoT
devices. HSMs should secure cryptographic operations
to safeguard sensitive data.
4. Zero Trust Architecture: Implement least privilege
access and micro-segmentation to establish a zero trust
IoT network. This necessitates the authentication and
authorization of every access request, irrespective of its
origin, and granting network access solely based on the
least privilege principle. For maintaining security, real-
time risk assessments and continuous scrutiny of
access requests are essential.
5.2 Integrating Cutting-Edge Technologies
1. Deploy blockchain technology to devise a
decentralized, tamper-resistant ledger for IoT data
transfers. Cryptographic hashing and consensus
algorithms ensure data integrity and immutability.
2. Real-Time Logging and Monitoring: Use centralized
systems for tracking and analyzing IoT network
activity. Ensure secure log storage and real-time
monitoring to timely detect and respond to threats.
3. Machine Learning-Assisted Intrusion Detection:
Deploy machine learning techniques for identifying
complex IoT network attack patterns and anomalies.
Train these algorithms on past network data to
recognize threats and adapt to evolving risks.
4. Indicators of Compromise (IOCs) for Rapid Incident
Response: Devise a comprehensive incident response
plan incorporating IOCs for swift detection and
response to security breaches. Automate network
segment isolation using the NodeMCU ESP8266
module and alert the Security Operations Center (SOC)
and forensics teams.
5. APIs for Third-Party Services: Incorporate VirusTotal
and Hybrid Analyzer into the IoT security framework
via APIs. These services scan suspicious files and
provide malware analysis reports, aiding SOC teams.
The amalgamation of these core components and
advanced technology culminates in a comprehensive
and secure IoT architecture capable of resisting a
multitude of cyber threats. This architecture fortifies
IoT networks and preserves device and data integrity,
confidentiality, and availability at all times.
These fundamental components and cutting-edge
technology can create a complete and secure IoT architecture
that can withstand a variety of cyber threats. This architecture
secures IoT networks and maintains device and data integrity,
confidentiality, and availability always.
 IEEE - 56998

2. Machine Learning-Assisted Intrusion Detection and

Fig 3. NodeMCU ESP8266-based real-time response
VI. METHODOLOGY: SYNERGY OF COMPONENTS FOR A SECURE
IOT ARCHITECTURE
This section elucidates how the components of the framework
collaboratively construct a secure and resilient IoT architecture.
By comprehending these dynamics, organizations can bolster
their security strategy and safeguard their IoT networks against
escalating cyber threats.
6.1 Collaborative Functioning of Core Components
1. NodeMCU ESP8266-based Real-Time Response and
Secure Boot: These two elements constitute a
comprehensive defense mechanism. The NodeMCU
ESP8266 module constantly scrutinizes network
traffic for suspicious activities and isolates
compromised devices in real time, thereby mitigating
potential threats. The Secure Boot process ensures that
IoT devices operate solely with validated firmware
and applications.
2. Hardware-Based Security and Zero Trust
Architecture: Hardware Security Modules (HSMs)
protect cryptographic operations and sensitive data
storage. The security of cryptographic keys and
authentication credentials provided by HSMs
enhances the security of the IoT network. Meanwhile,
the zero trust architecture demands stringent
authentication and authorization for all access
requests.
Indicators of Compromise (IOCs): Machine learning
methodologies bolster intrusion detection systems in
identifying complex attack patterns and anomalies.
When these sophisticated detection capabilities are
combined with IOCs, they trigger the NodeMCU
ESP8266 module to segregate network segments and
relay incident information to the security operations
center (SOC) and forensics teams.
3. APIs and Integration of Third-Party Services: APIs
facilitate the integration of third-party services like
VirusTotal and Hybrid Analyzer into the IoT security
architecture, adding layers of protection. These
services have the capability to scan suspicious files,
provide malware analysis reports, and assist SOC
teams, thereby enhancing incident response.[8]
6.3 Unified Operation of Comprehensive IoT Security
Framework
The harmonious operation of the proposed IoT security
framework provides holistic protection against cyber threats.
IoT security is primarily governed by the NodeMCU ESP8266
module, secure boot, hardware-based security, and zero trust
architecture. These elements are fortified by blockchain
technology, real-time logging and monitoring, machine
learning-assisted intrusion detection, IOCs, and the integration
of third-party services. This collaborative approach constructs
a resilient and secure IoT infrastructure that shields devices and
data from cyberattacks. This synergistic approach safeguards
the IoT ecosystem and aids organizations in navigating the
ever-evolving cybersecurity landscape.

6.2 Integration and Synergy of Cutting-Edge Technologies

1. Blockchain and Real-Time Logging and Monitoring:

The amalgamation of blockchain technology with
real-time logging and monitoring solutions ensure data
integrity and transparency within the network. The
decentralized, tamper-proof nature of blockchain
guarantees the validity and immutability of IoT data
exchanges, while real-time logging and monitoring
solutions facilitate visibility into network activities
and enable threat detection. Fig 4. Zero trust architecture implementation

14th ICCCNT IEEE Conference

Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
 IEEE - 56998
VII. CONSLUSION
The rapid proliferation of IoT devices and their increasing
adoption across various sectors have underscored the critical
need for robust and comprehensive security frameworks. This
research paper presented a multifaceted IoT security
architecture, incorporating core components such as NodeMCU
ESP8266-based real-time response, secure boot, hardware-
based security, and zero trust principles, as well as cutting-edge
technologies such as blockchain, real-time logging and
monitoring, machine learning-assisted intrusion detection,
indicators of compromise, and API integration with third-party
services.
The proposed framework's effectiveness lies in the
synergistic operation of its constituent elements, providing a
holistic and resilient defense mechanism against a diverse array
of cyber threats. By implementing and maintaining this
comprehensive IoT security architecture, organizations can
safeguard their IoT ecosystems and ensure the integrity,
confidentiality, and availability of devices and data within their
networks.
As the IoT landscape continues to evolve and the complexity
of cyber threats increases, it is imperative for organizations to
remain vigilant and adaptive. Future research endeavors may
explore the integration of emerging technologies, such as
quantum computing and artificial intelligence, to further
enhance the robustness and adaptability of IoT security
frameworks. The pursuit of innovative and proactive security
solutions will remain a paramount concern for organizations as
they navigate the dynamic and interconnected world of the
Internet of Things.
REFERENCES
[1] E. Gelenbe, P. Fröhlich, M. Nowak, S. Papadopoulos, A. Protogerou, A.
Drosou, and D. Tzovaras, "IoT network attack detection and mitigation," 2020
9th Mediterranean Conference on Embedded Computing (MECO), 2020, pp.
1-6.
14th ICCCNT IEEE Conference
Authorized licensed use limited to: VNR Vignana Jyothi Inst of Eng & Tech. Downloaded on February 20,2025 at 17:38:13 UTC from IEEE Xplore. Restrictions apply.
July 6-8, 2023
IIT - Delhi, Delhi, India
[2] M. Aslam et al., "Adaptive machine learning based distributed denial-of-
services attacks detection and mitigation system for SDN-enabled iot," Sensors,
vol. 22, no. 7, p. 2697, 2022.
[3] Y. Yang et al., "IoT-based DDoS attack detection and mitigation using the
edge of SDN," Cyberspace Safety and Security: 11th International Symposium,
CSS 2019, Guangzhou, China, December 1–3, 2019, Proceedings, Part II,
Springer International Publishing, 2019.
[4] A. Mihoub et al., "Denial of service attack detection and mitigation for
internet of things using looking-back-enabled machine learning techniques,"
Computers & Electrical Engineering, vol. 98, p. 107716, 2022.
[5] P. K. Binu, D. Mohan, and E. M. S. Haridas, "An sdn-based prototype for
dynamic detection and mitigation of dos attacks in iot," 2021 Third
International Conference on Inventive Research in Computing Applications
(ICIRCA), IEEE, 2021.
[6] N. Ravi and S. M. Shalinie, "Learning-driven detection and mitigation of
DDoS attack in IoT via SDN-cloud architecture," IEEE Internet of Things
Journal, vol. 7, no. 4, pp. 3559-3570, 2020.
[7] S. K. Patel, "Attack detection and mitigation scheme through novel
authentication model enabled optimized neural network in smart healthcare,"
Computer Methods in Biomechanics and Biomedical Engineering, vol. 26, no.
1, pp. 38-64, 2023.
[8] Z. Shelby, K. Hartke and C. Bormann, "The Constrained Application
Protocol (CoAP)," IETF RFC 7252, June 2014.
[9] D. Thakore, A. Joshi, T. Finin and A. Joshi, "A policy-based permission
blockchain for the internet of things," 2019 IEEE 39th International Conference
on Distributed Computing Systems (ICDCS), pp. 1260-1270, 2019, doi:
10.1109/ICDCS.2019.00109.
[10] B. Schneier, "Public-interest internet infrastructure," in IEEE Security &
Privacy, vol. 13, no. 6, pp. 84-87, Nov.-Dec. 2015, doi:
10.1109/MSP.2015.132.
[11] B. Liu, B. Yu, S. Chen, X. Xu and L. Zhu, "Trusted Data in the Cloud with
Secure Coprocessor-Based Big Data Provenance," in IEEE Transactions on Big
Data, vol. 4, no. 3, pp. 370-383, Sept. 2018, doi:
10.1109/TBDATA.2018.2833312.
[12] P. Baracaldo, N. Baracaldo, H. Ludwig, J. Safavi and Y. Zhou, "Mitigating
poisoning attacks on machine learning models: A data provenance-based
approach," 2017 16th IEEE International Conference on Machine Learning and
Applications (ICMLA), pp. 301-306, 2017, doi: 10.1109/ICMLA.2017.0-134.
[13] F. Dehghantanha and A. Dehghantanha, "Cyber threat intelligence:
Challenges and opportunities," 2016 11th International Conference on
Availability, Reliability and Security (ARES), pp. 50-58, 2016, doi:
10.1109/ARES.2016.87.
[14] A. Farris, R. TaheriMonfared, Y. Gligoric, O. Tommila, S. Plosila,
"Internet of Things: A survey on the security of IoT frameworks," in Journal of
Information Security and Applications, vol. 38, pp. 8-27, Feb. 2018, doi:
10.1016/j.jisa.2017.11.002.