Cyber Security in the Era of Smart Homes - Guidelines and Maturity Assessment

The Internet of Things (IoT) is being increasingly adopted by businesses to improve operations, processes, and products. While the concept brings with it endless opportunities, it also presents tremendous challenges. One of the biggest challenges is Security. With billions of devices being interconnected, how do we ensure that our information systems remain secure and resilient? In this study, the research is narrowed down to the context of Smart Homes (inter-connected devices to enable the remote monitoring and management of appliances and systems), where both IoT and traditional devices and services integrate into a heterogeneous environment. While manufacturers and providers introduce new devices and services at an exponential speed, their experience in the areas of cybersecurity during design, implementation and operation continues to be limited. Due to interdependencies and the interconnected nature of Smart Homes – numerous cyber threats are possible, which in turn have possible consequences on the life, safety and health of residents. Hence, it becomes essential for all stakeholders (manufacturers, vendors, providers, developers and end users) to understand and secure these devices and services. This research aimed at securing Smart Home Environments (SHEs) from cyber threats and attacks by following a holistic approach in security by highlighting good practices which apply during each step of the smart home product lifecycle. It also addresses the applicability of these practices to different types of: devices, stakeholders and threat groups. These good practices are further combined with standard frameworks like ISO 21827:2008, CMMI, COBIT5, etc., to create a cybersecurity maturity assessment (CSMA) for the smart home lifecycle....