Challenges for Security Assessment of Enterprises in the IoT Era
This work addresses security assessment challenges for enterprises in the IoT era, but it appears incremental as it builds on existing attack graph methods.
The paper tackles the problem of using attack graphs for security assessment in enterprise networks that include IoT devices, reviewing challenges and proposing novel ideas and countermeasures to address them.
For years, attack graphs have been an important tool for security assessment of enterprise networks, but IoT devices, a new player in the IT world, might threat the reliability of this tool. In this paper, we review the challenges that must be addressed when using attack graphs to model and analyze enterprise networks that include IoT devices. In addition, we propose novel ideas and countermeasures aimed at addressing these challenges.