Analysis of Assets for Threat Risk Model in Avatar-Oriented IoT Architecture

  • Ievgeniia KuzminykhEmail author
  • Anders Carlsson
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 11118)


This paper represents new functional architecture for the Internet of Things systems that use an avatar concept in displaying interaction between components of the architecture. Object-oriented representation of “thing” in the avatar concept allows simplify building and deployment of IoT systems over the web network and bind “things” to such application protocols as HTTP, CoAP, and WebSockets mechanism. The assets and stakeholders for ensuring security in IoT were specified. These assets are needed to isolate the risks associated with each of assets of IoT system. Example of Thing Instance’s description and its functionality using JSON format is shown also in the paper.


IoT Avatar Thing instance Threat assessment Security risk assessment 


  1. 1.
    Baseline Security Recommendations for IoT. European Union Agency For Network And Information Security, ENISA (2017)Google Scholar
  2. 2.
    Ali, B., Awad, A.I.: Cyber and physical security vulnerability assessment for IoT-based smart homes. Sensors 18(3), E817 (2018)CrossRefGoogle Scholar
  3. 3.
    Hossain Md.M., Fotouhi, M., Hasan, R.: Towards an analysis of security issues, challenges, and open problems in the Internet of Things. In: 2015 IEEE World Congress on Services (SERVICES), pp. 21–28. IEEE (2015)Google Scholar
  4. 4.
    Macaulay T.: RIoT Control. Chapter 12 - Threats and Impacts to the IoT. Elsevier (2017)Google Scholar
  5. 5.
    Nurse, J.R.C., Creese, S., De Roure, D.: Security risk assessment in Internet of Things systems. IT Prof. 19(5), 20–26 (2017)CrossRefGoogle Scholar
  6. 6.
    Machine-to-Machine Communications (M2M). ETSI TR 103 167 V1.1.1 (2011)Google Scholar
  7. 7.
    Akatyev, N., James, J.I.: Evidence identification in IoT networks based on threat assessment. Future Gener. Comput. Syst. (2017). In pressGoogle Scholar
  8. 8.
    Asset Avatars: Get a 360-Degree View of Your Assets - Whitepaper. Hitachi Vantara (2017)Google Scholar
  9. 9.
    Voas J.: Networks of ‘Things’. NIST SP 800-183 (2016)Google Scholar
  10. 10.
    Reference architecture for IoT device capability exposure. Recommendation ITU-T Y.4115 (2017)Google Scholar
  11. 11.
    Mrissa, M., Mdini, L., Jamont, J.P., Le Sommer, N., Laplace, J.: An avatar architecture for the web of things. IEEE Int. Comput. 19(2), 30–38 (2015)CrossRefGoogle Scholar
  12. 12.
    Microsoft Azure IoT Reference Architecture. Version 2.0. Microsoft Inc. (2018)Google Scholar
  13. 13.
    Nivaggioli, P.: Cisco SP IoT Architecture. Cisco. Accessed 29 May 2018
  14. 14.
    Guth, J., et al.: A detailed analysis of IoT platform architectures: concepts, similarities, and differences. In: Di Martino, B., Li, K.-C., Yang, L.T., Esposito, A. (eds.) Internet of Everything. IT, pp. 81–101. Springer, Singapore (2018). Scholar
  15. 15.
    Web of Things (WoT) Thing Description. W3C Draft. Accessed 29 May 2018
  16. 16.
    Web of Things (WoT) Security and Privacy Considerations. W3C Draft. Accessed 29 May 2018
  17. 17.
    Zambonelli, F.: Towards a General Software Engineering Methodology for the Internet of Things. Cornell University Library, arXiv:1601 (2016)
  18. 18.
    ASAWoO project - Adaptive Supervision of Avatar/Object Links for the Web of Objects. Accessed 29 May 2018
  19. 19.
    Kuzminykh, I.: Avatar conception for “Thing” representation in Internet of Things. In: 14th Swedish National Computer Networking Workshop, Karlskrona, Sweden (2018)Google Scholar
  20. 20.
    BONSEYES - Artificial Intelligence Marketplace. Accessed 29 May 2018
  21. 21.
    OWASP Internet of Things Project. Accessed 29 May 2018

Copyright information

© Springer Nature Switzerland AG 2018

Authors and Affiliations

  1. 1.Blekinge Institute of TechnologyKarlskronaSweden

Personalised recommendations