NORMA eResearch @NCI Library

Pen Testing Framework for IoT Devices

Collins, David (2021) Pen Testing Framework for IoT Devices. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
PDF (Master of Science)
Download (2MB) | Preview
[thumbnail of Configuration manual]
Preview
PDF (Configuration manual)
Download (2MB) | Preview

Abstract

Current Pen-Testing frameworks focus on locating defects in the design of Web Applications and Network servers, identifying the most likely attack vectors, and introduce mitigation strategies to minimise their damage potential. The challenge is to adapt a Pen-Testing framework that would be suitable for use with IoT devices. This research proposes to create a Pen-Testing Framework that would be aimed at IoT devices which due to memory constraints and smaller processing power would need to be handled differently in a penetration test. The Pen-Testing Framework was applied to a network of ESP32 Microcontrollers in an IoT project used to gathered temperature and humidity data from a sensor, check the state of a pushbutton switch and monitor the output from a Microcontroller. This is a typical IoT project with basic coding standards and containing minimal security considerations. The Pen-Testing framework will be used to evaluate the concerns outlined in the literature review paying particular attention to the evolving regulatory standards and guidelines.

Item Type: Thesis (Masters)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Clara Chan
Date Deposited: 14 Oct 2021 11:56
Last Modified: 14 Oct 2021 11:56
URI: https://norma.ncirl.ie/id/eprint/5094

Actions (login required)

View Item View Item