Internet Archive Scholar

28. September - 2. Oktober 2020

Andreas Wolf, Dimitrios Simopoulos, Luca D'Avino, Patrick Schwaiger
2021

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (431.9 kB)
https://web.archive.org/web/20210131073324/https://dl.gi.de/bitstream/handle/20.500.12116/34700/C25-2.pdf;jsessionid=F788472EBA901BBE9A80105C266B6781?sequence=1

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL. The file type is application/pdf.

Recently, IoT usage has grown rapidly. Security risks are rising analogously, though. Our paper introduces an approach to identify and address security threats by applying the PASTA (Process for Attack Simulation and Threat Analysis) threat model to the IoT domain. By adapting PASTA, we optimize the threat analysis based on domain knowledge and specific needs of IoT. With integration of the PASTA results into the development process and the IoT software development life cycle, we reduce
more » ... risks. A prototype demonstrates the feasibility of the concept for security vulnerability reduction via an integrated DevSecOps toolchain.
doi:10.18420/inf2020_111 fatcat:nrhg5w6w4vbvrpbmxcnbnji5ay
Citation

Andreas Wolf, Dimitrios Simopoulos, Luca D'Avino, Patrick Schwaiger. "28. September - 2. Oktober 2020." (2021)