IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v13y2021i6p148-d568882.html
   My bibliography  Save this article

IoT Security Risk Management Strategy Reference Model (IoTSRM2)

Author

Listed:
  • Traian Mihai Popescu

    (Management Department, Faculty of Management in Production and Transportation, Politehnica University of Timisoara, 14 Remus Street, 300191 Timisoara, Romania)

  • Alina Madalina Popescu

    (PactFlux SRL, 101, Leurda, 215204 Motru, Romania)

  • Gabriela Prostean

    (Management Department, Faculty of Management in Production and Transportation, Politehnica University of Timisoara, 14 Remus Street, 300191 Timisoara, Romania)

Abstract

Nowadays, Internet of Things (IoT) adoptions are burgeoning and deemed the lynchpin towards achieving ubiquitous connectivity. In this context, defining and leveraging robust IoT security risk management strategies are paramount for secure IoT adoptions. Thus, this study aims to support IoT adopters from any sector to formulate or reframe their IoT security risk management strategies to achieve robust strategies that effectively address IoT security issues. In a nutshell, this article relies on a mixed methods research methodology and proposes a reference model for IoT security risk management strategy. The proposed IoT security risk management strategy reference model (IoTSRM2) relies on the 25 selected IoT security best practices which are outlined using a proposed taxonomic hierarchy, and on the proposed three-phased methodology that consists of nine steps and outputs. The main contribution of this work is the proposed IoTSRM2 which consists of six domains, 16 objectives, and 30 prioritized controls. Furthermore, prior to providing the related work, this article provides a critical evaluation of selected informative references of IoTSRM2 based on their percentage-wise linkage to the IoTSRM2 domains and to the entire IoTSRM2. The findings of the critical evaluation illustrate, inter alia, the selected informative references that are the top three most and least linked to the entire IoTSRM2.

Suggested Citation

  • Traian Mihai Popescu & Alina Madalina Popescu & Gabriela Prostean, 2021. "IoT Security Risk Management Strategy Reference Model (IoTSRM2)," Future Internet, MDPI, vol. 13(6), pages 1-43, June.
    • Handle: RePEc:gam:jftint:v:13:y:2021:i:6:p:148-:d:568882
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/13/6/148/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/1999-5903/13/6/148/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. In Lee, 2020. "Internet of Things (IoT) Cybersecurity: Literature Review and IoT Cyber Risk Management," Future Internet, MDPI, vol. 12(9), pages 1-21, September.
    2. Jithin R & Priya Chandran, 2018. "Secure and Dynamic Memory Management Architecture for Virtualization Technologies in IoT Devices," Future Internet, MDPI, vol. 10(12), pages 1-16, November.
    3. Xiruo Liu & Meiyuan Zhao & Sugang Li & Feixiong Zhang & Wade Trappe, 2017. "A Security Framework for the Internet of Things in the Future Internet Architecture," Future Internet, MDPI, vol. 9(3), pages 1-28, June.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Weizhi Meng & Thanassis Giannetsos & Christian D. Jensen, 2022. "Information and Future Internet Security, Trust and Privacy," Future Internet, MDPI, vol. 14(12), pages 1-2, December.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Valentina Gatteschi & Fabrizio Lamberti & Claudio Demartini & Chiara Pranteda & Víctor Santamaría, 2018. "Blockchain and Smart Contracts for Insurance: Is the Technology Mature Enough?," Future Internet, MDPI, vol. 10(2), pages 1-16, February.
    2. Corinna Köpke & Jennifer Mielniczek & Christoph Roller & Kerstin Lange & Frank Sill Torres & Alexander Stolz, 2023. "Resilience management processes in the offshore wind industry: schematization and application to an export-cable attack," Environment Systems and Decisions, Springer, vol. 43(2), pages 161-177, June.
    3. Henock Mulugeta Melaku, 2023. "Context-Based and Adaptive Cybersecurity Risk Management Framework," Risks, MDPI, vol. 11(6), pages 1-22, May.
    4. Mohammed Balfaqih & Soltan Abed Alharbi, 2022. "Associated Information and Communication Technologies Challenges of Smart City Development," Sustainability, MDPI, vol. 14(23), pages 1-27, December.
    5. Tong Chen & Mo Wang & Jin Su & Rana Muhammad Adnan Ikram & Jianjun Li, 2023. "Application of Internet of Things (IoT) Technologies in Green Stormwater Infrastructure (GSI): A Bibliometric Review," Sustainability, MDPI, vol. 15(18), pages 1-22, September.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:13:y:2021:i:6:p:148-:d:568882. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.