The Internet of Things and IT Auditing

John Shu; Jason M. Rosenberg; Shambhu Upadhyaya; Hejamadi Raghav Rao

doi:10.1002/9781119456735.ch10

The Internet of Things and IT Auditing

John Shu
, Jason M. Rosenberg
, Shambhu Upadhyaya
, Hejamadi Raghav Rao

University at Buffalo

Research output: Chapter in Book/Report/Conference proceeding › Chapter › peer-review

Abstract

The Internet of Things (IoT) has the potential for immense benefits in organizational settings. Unfortunately, these technologies also come with a myriad of vulnerabilities that could serve as channels for cyber-related attacks. Companies and organizations adopting such technologies would need to employ routine checks and balances periodically to continually ensure the security of the infrastructure. This implies that detailed policies on the installation, integration, and calibration of these IoT devices would be required as a standard. Most important of all, comprehensive audits of the organization wide system would be an imperative to maintain a robust and resilient infrastructure impervious to the varied ingenious attacks so widely observed nowadays. This chapter delves into auditing the IoT system, particularly examining the need for auditing and the inherent security risks that could surface in the absence of such assessments.

Original language	English
Title of host publication	Internet of Things A to Z
Subtitle of host publication	Technologies and Applications
Publisher	Taylor and Francis
Pages	275-292
Number of pages	18
ISBN (Electronic)	9781119456735
ISBN (Print)	9781119456742
DOIs	https://doi.org/10.1002/9781119456735.ch10
State	Published - Jan 1 2018

Keywords

Denial of Service
Internet of Things (IoT)
IoT Audit
IoT Risks
IoT Security
RPO
RTO
SCADA
Social Engineering

Access to Document

10.1002/9781119456735.ch10

Cite this

@inbook{89105b09355b4a9787c008600adfad03,

title = "The Internet of Things and IT Auditing",

abstract = "The Internet of Things (IoT) has the potential for immense benefits in organizational settings. Unfortunately, these technologies also come with a myriad of vulnerabilities that could serve as channels for cyber-related attacks. Companies and organizations adopting such technologies would need to employ routine checks and balances periodically to continually ensure the security of the infrastructure. This implies that detailed policies on the installation, integration, and calibration of these IoT devices would be required as a standard. Most important of all, comprehensive audits of the organization wide system would be an imperative to maintain a robust and resilient infrastructure impervious to the varied ingenious attacks so widely observed nowadays. This chapter delves into auditing the IoT system, particularly examining the need for auditing and the inherent security risks that could surface in the absence of such assessments.",

keywords = "Denial of Service, Internet of Things (IoT), IoT Audit, IoT Risks, IoT Security, RPO, RTO, SCADA, Social Engineering",

author = "John Shu and Rosenberg, \{Jason M.\} and Shambhu Upadhyaya and Rao, \{Hejamadi Raghav\}",

year = "2018",

month = jan,

day = "1",

doi = "10.1002/9781119456735.ch10",

language = "English",

isbn = "9781119456742",

pages = "275--292",

booktitle = "Internet of Things A to Z",

publisher = "Taylor and Francis",

}

TY - CHAP

T1 - The Internet of Things and IT Auditing

AU - Shu, John

AU - Rosenberg, Jason M.

AU - Upadhyaya, Shambhu

AU - Rao, Hejamadi Raghav

PY - 2018/1/1

Y1 - 2018/1/1

N2 - The Internet of Things (IoT) has the potential for immense benefits in organizational settings. Unfortunately, these technologies also come with a myriad of vulnerabilities that could serve as channels for cyber-related attacks. Companies and organizations adopting such technologies would need to employ routine checks and balances periodically to continually ensure the security of the infrastructure. This implies that detailed policies on the installation, integration, and calibration of these IoT devices would be required as a standard. Most important of all, comprehensive audits of the organization wide system would be an imperative to maintain a robust and resilient infrastructure impervious to the varied ingenious attacks so widely observed nowadays. This chapter delves into auditing the IoT system, particularly examining the need for auditing and the inherent security risks that could surface in the absence of such assessments.

AB - The Internet of Things (IoT) has the potential for immense benefits in organizational settings. Unfortunately, these technologies also come with a myriad of vulnerabilities that could serve as channels for cyber-related attacks. Companies and organizations adopting such technologies would need to employ routine checks and balances periodically to continually ensure the security of the infrastructure. This implies that detailed policies on the installation, integration, and calibration of these IoT devices would be required as a standard. Most important of all, comprehensive audits of the organization wide system would be an imperative to maintain a robust and resilient infrastructure impervious to the varied ingenious attacks so widely observed nowadays. This chapter delves into auditing the IoT system, particularly examining the need for auditing and the inherent security risks that could surface in the absence of such assessments.

KW - Denial of Service

KW - Internet of Things (IoT)

KW - IoT Audit

KW - IoT Risks

KW - IoT Security

KW - RPO

KW - RTO

KW - SCADA

KW - Social Engineering

UR - https://www.scopus.com/pages/publications/105008623625

U2 - 10.1002/9781119456735.ch10

DO - 10.1002/9781119456735.ch10

M3 - Chapter

SN - 9781119456742

SP - 275

EP - 292

BT - Internet of Things A to Z

PB - Taylor and Francis

ER -

The Internet of Things and IT Auditing

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this