Enforcing security in Internet of Things frameworks: A Systematic Literature Review

With the rise of the Internet of Things (IoT) technology, the number of IoT devices/sensors has increased significantly. It is anticipated that large-scale sensor-based systems will prevail in our societies, calling for novel methodologies to design and operate those new systems. To support the computational demand of real-time delay-sensitive applications of largely distributed IoT devices/sensors, the Cloud is migrating to the edge of the network where resources such as routers, switches, and gateways are being virtualized. The open structural design of IoT architecture and the extensive usage of the paradigm itself cause to encounter conventional security issues for the existing networking technologies. Moreover, cooperation generates challenges as new security challenges can disrupt the systems' regular functionalities and operations. Furthermore, the commercialization of the IoT has led to several public security concerns including threats of cyber-attacks, privacy issues, and organized crimes. In this paper, we aim to provide guidelines for researchers and practitioners interested in understanding IoT security issues. More specifically, an extensive description of security threats and challenges across the different layers of the architecture of IoT systems is presented. Also, the light will be shed on the solutions and countermeasures proposed in the literature to address such security issues. Finally, an emerging security challenge which has yet to be explained in-depth in previous studies is introduced. (C) 2019 Elsevier B.V. All rights reserved.