Abstract
Risk assessment for IoT systems is necessary not only for security reasons but also for safety. Accordingly, the authors have developed risk assessment methods that take into account both factors. Remote maintenance for IoT systems is becoming increasingly available. Given this development, it is important to balance maintainability with the safety and security of the target IoT system. To make this possible, we developed a method and supporting program to determine the optimal combination of suitable measures to ensure a proper balance based on quantitative analysis. In an illustrative application, we applied our method to a multi-parameter vital signs IoT monitor used in hospitals and/or care homes. It was found that the introduction of a remote maintenance capability increases total risk if measures to address information leakage are not implemented. Under constraint conditions related to the cost of such leakage prevention measures, we were able to specifically identify the optimal combination of measures that maximizes the difference between the benefit and cost of introducing remote maintenance.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hayakawa T, Sasaki R, Hayashi H, Takahashi Y, Kaneko T, Okubo T (2018) Proposal and application of security/safety evaluation method for medical device system that includes IoT. ICNCC 2018:157–164
Kaneko T, Takahashi Y, Okubo T, Sasaki R (2018) Threat analysis using STRIDE with STAMP/STPA. In: The international workshop on evidence-based security and privacy in the wild 2018 Nara, Japan
Tedeschi S, Mehnen J, Tapoglou N, Rajkumar R (2015) Security aspects in cloud based condition monitoring of machine tools. In: 4th international conference on through-life engineering services
Tedeschi S, Mehnen J, Tapoglou N, Roy R (2017) A secure IoT devices for the maintenance of machine tools. Procedia CIRP 59:150–155
Uesawa H, Takehara T, Ueno A (2018) Non-contact measurements of diaphragm electromyogram, electrocardiogram and respiratory variations with sheet-type fabric electrodes for neonatal monitoring. In: IEEE EMBS international conference on biomedical and health informatics (BHI)
Kumamoto H (2005) Modern reliability engineering. Corona Publishers. (in Japanese)
Private University Research Branding Project. https://www.dendai.ac.jp/about/tdu/activities/branding/TokyoDenkiUniversityResearchBrandingProjectEnglishVer..pdf (20 June 2019)
Acknowledgements
This research was conducted with the support of the Ministry of Education, Culture, Sports, Science and Technology as part of a private university research branding project at Tokyo Denki University titled “Formation of a secure and advanced biomedical engineering base in the age of global IoT” [7]. We thank the project members for their helpful discussion to proceed with our research. We would also like to thank Professor Jigang Liu of Metropolitan State University for helpful comments on organizing this paper.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Sasaki, R. (2020). A Risk Assessment Method for IoT Systems Using Maintainability, Safety, and Security Matrixes. In: Kim, K., Kim, HY. (eds) Information Science and Applications. Lecture Notes in Electrical Engineering, vol 621. Springer, Singapore. https://doi.org/10.1007/978-981-15-1465-4_37
Download citation
DOI: https://doi.org/10.1007/978-981-15-1465-4_37
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-1464-7
Online ISBN: 978-981-15-1465-4
eBook Packages: EngineeringEngineering (R0)