An Exploratory Analysis of the Security Risks of the Internet of Things in Finance. / Shepherd, Carlton; Petitcolas, Fabien; Akram, Raja; Markantonakis, Konstantinos.

Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. ed. / Javier Lopez; Simone Fischer-Hübner; Costas Lambrinoudakis. Springer-Verlag, 2017. p. 164-179 (Lecture Notes in Computer Science; Vol. 10442).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Published

Standard

An Exploratory Analysis of the Security Risks of the Internet of Things in Finance. / Shepherd, Carlton; Petitcolas, Fabien; Akram, Raja; Markantonakis, Konstantinos.

Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. ed. / Javier Lopez; Simone Fischer-Hübner; Costas Lambrinoudakis. Springer-Verlag, 2017. p. 164-179 (Lecture Notes in Computer Science; Vol. 10442).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Harvard

Shepherd, C, Petitcolas, F, Akram, R & Markantonakis, K 2017, An Exploratory Analysis of the Security Risks of the Internet of Things in Finance. in J Lopez, S Fischer-Hübner & C Lambrinoudakis (eds), Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. Lecture Notes in Computer Science, vol. 10442, Springer-Verlag, pp. 164-179, 14th International Conference on Trust, Privacy & Security in Digital Business, Lyon, France, 28-31 August. DOI: 10.1007/978-3-319-64483-7_11

APA

Shepherd, C., Petitcolas, F., Akram, R., & Markantonakis, K. (2017). An Exploratory Analysis of the Security Risks of the Internet of Things in Finance. In J. Lopez, S. Fischer-Hübner, & C. Lambrinoudakis (Eds.), Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. (pp. 164-179). (Lecture Notes in Computer Science; Vol. 10442). Springer-Verlag. DOI: 10.1007/978-3-319-64483-7_11

Vancouver

Shepherd C, Petitcolas F, Akram R, Markantonakis K. An Exploratory Analysis of the Security Risks of the Internet of Things in Finance. In Lopez J, Fischer-Hübner S, Lambrinoudakis C, editors, Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. Springer-Verlag. 2017. p. 164-179. (Lecture Notes in Computer Science). Available from, DOI: 10.1007/978-3-319-64483-7_11

Author

Shepherd, Carlton; Petitcolas, Fabien; Akram, Raja; Markantonakis, Konstantinos / An Exploratory Analysis of the Security Risks of the Internet of Things in Finance.

Trust, Privacy and Security in Digital Business: 14th International Conference, TrustBus 2017, Lyon, France, August 30-31, 2017, Proceedings. ed. / Javier Lopez; Simone Fischer-Hübner; Costas Lambrinoudakis. Springer-Verlag, 2017. p. 164-179 (Lecture Notes in Computer Science; Vol. 10442).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

BibTeX

@inbook{39269ad2d0af41eeb4d5f8ffdb33b4e5,
title = "An Exploratory Analysis of the Security Risks of the Internet of Things in Finance",
author = "Carlton Shepherd and Fabien Petitcolas and Raja Akram and Konstantinos Markantonakis",
year = "2017",
month = "7",
doi = "10.1007/978-3-319-64483-7_11",
isbn = "978-3-319-64482-0",
series = "Lecture Notes in Computer Science",
publisher = "Springer-Verlag",
pages = "164--179",
editor = "Javier Lopez and Simone Fischer-Hübner and Costas Lambrinoudakis",
booktitle = "Trust, Privacy and Security in Digital Business",

}

RIS

TY - CHAP

T1 - An Exploratory Analysis of the Security Risks of the Internet of Things in Finance

AU - Shepherd,Carlton

AU - Petitcolas,Fabien

AU - Akram,Raja

AU - Markantonakis,Konstantinos

PY - 2017/7/27

Y1 - 2017/7/27

N2 - The Internet of Things (IoT) is projected to significantly impact consumer finance, through greater customer personalisation, more frictionless payments, and novel pricing schemes. The lack of deployed applications, however, renders it difficult to evaluate potential security risks, which is further complicated by the presence of novel, IoT-specific risks absent in conventional systems. In this work, we present two-part study that uses scenario planning to evaluate emerging risks of IoT in a variety of financial products and services, using ISO/IEC 20005:2008 to assess those risks from related work. Over 1,400 risks were evaluated from a risk assessment with 7 security professionals within the financial industry, which was contrasted with an external survey of 40 professionals within academia and industry. From this, we draw a range of insights to advise future IoT research and decision-making regarding potentially under-appreciated risks. To our knowledge, we provide the first empirical investigation for which threats, vulnerabilities, asset classes and, ultimately, risks may take precedence in this domain.

AB - The Internet of Things (IoT) is projected to significantly impact consumer finance, through greater customer personalisation, more frictionless payments, and novel pricing schemes. The lack of deployed applications, however, renders it difficult to evaluate potential security risks, which is further complicated by the presence of novel, IoT-specific risks absent in conventional systems. In this work, we present two-part study that uses scenario planning to evaluate emerging risks of IoT in a variety of financial products and services, using ISO/IEC 20005:2008 to assess those risks from related work. Over 1,400 risks were evaluated from a risk assessment with 7 security professionals within the financial industry, which was contrasted with an external survey of 40 professionals within academia and industry. From this, we draw a range of insights to advise future IoT research and decision-making regarding potentially under-appreciated risks. To our knowledge, we provide the first empirical investigation for which threats, vulnerabilities, asset classes and, ultimately, risks may take precedence in this domain.

U2 - 10.1007/978-3-319-64483-7_11

DO - 10.1007/978-3-319-64483-7_11

M3 - Conference contribution

SN - 978-3-319-64482-0

T3 - Lecture Notes in Computer Science

SP - 164

EP - 179

BT - Trust, Privacy and Security in Digital Business

PB - Springer-Verlag

ER -