Constantinos Kolias, Angelos Stavrou, Jeffrey M. Voas, Irena V. Bojanova, David R. Kuhn
Our research began from asking whether there is a science behind the Internet of Things (IoT). We started from zero knowledge and no bias. The results of that work determined that indeed there is a science, but it is a science of numerous actors, that when viewed together involve sensing, computation, communication, time, context, and data, to name only a few. From there, we began to ask questions concerning interoperability, more specifically, how does all of this function as a system when using commercially available components that can be purchased from anywhere and at a low cost, and with little or no component pedigree available? To study this, we bought components and created small experiments to see how it all interoperated. However, that was still not enough. We additionally wanted to ask what did this mean in terms of security, given many reports warning that IoT is security-less. Said another way, what could we glean from buying cheap parts, creating our own experiments with them, and learning how to hack the vulnerabilities of those parts in those experiments? The answer is a lot.