Аналіз сучасного стану безпеки інтернету речей. ANALYSIS OF THE CURRENT SECURITY SITUATION IN THE INTERNET OF THINGS
The paper exzamines the problems of Internet of things security. An overview of the use of the Internet of things, dynamics of its distribution and improvement are made. The opinion of the leading experts of the IT industry about the problems of safety of “smart” devices are highlighted. On the basis of the reviewed literary sources, expert opinions of leading IT industry specialists, statistics and recent cases of Internet security breaches, the relevance of the topic and the current unsatisfactory condition of the industry are determined, which is a consequence of negligence, underestimation of threats and insufficient coverage of the issues in information sources. In a part of the work the actual problems of Internet safety at the level of its organization are considered, vulnerability of cloud service, untrusted gateway, wireless communication channels, implementation of authentication and device authorization are analyzed. It is shown that the main sources of vulnerability are Internet devices themselves, which often do not have any protection from cyber attacks. The reasons of unsatisfactory condition of Internet of things safety are analyzed, the existing threats and reasons of their occurrence are shown. It was revealed that the main reason for this situation is the lack of minimum security measures, including penetration tests, prohibition of simple passwords, etc., due to the desire to provide companies maximum producing profits. Cyber attacks on routers and IP video devices and the implications that they cause are listed. The present condition of the state and international regulation of the Internet of things problems, standardization and certification are analyzed. The main principles, the implementation of which are foreseen in the standards, are given. On the basis of the analysis, a list of recommendations and proposals aimed at minimizing threats to the Internet has been developed.
інтернет речей, інформаційна безпека, кіберзлочинність, Internet of things, information security, cybercrime