Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.


The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Learning Internet of Things Security "Hands-on"



Constantinos Kolias, Angelos Stavrou, Jeffrey M. Voas, Irena V. Bojanova, David R. Kuhn


Our research began from asking whether there is a science behind the Internet of Things (IoT). We started from zero knowledge and no bias. The results of that work determined that indeed there is a science, but it is a science of numerous actors, that when viewed together involve sensing, computation, communication, time, context, and data, to name only a few. From there, we began to ask questions concerning interoperability, more specifically, how does all of this function as a system when using commercially available components that can be purchased from anywhere and at a low cost, and with little or no component pedigree available? To study this, we bought components and created small experiments to see how it all interoperated. However, that was still not enough. We additionally wanted to ask what did this mean in terms of security, given many reports warning that IoT is security-less. Said another way, what could we glean from buying cheap parts, creating our own experiments with them, and learning how to hack the vulnerabilities of those parts in those experiments? The answer is a lot.
IEEE Security & Privacy


computer security, cyber security, internet of things
Created February 3, 2016, Updated November 10, 2018