Υλοποίηση μεθοδολογίας ανάλυσης κινδύνων στο διαδίκτυο των πραγμάτων
Development of a risk assessment methodology for the Internet of Things
View/
Keywords
Cybersecurity ; Information systems security ; IoT ; Web ; Ruby on Rails ; Attack paths ; Risk assessmentAbstract
As the Internet of Things (IoT) matures, it strengthens connectivity and interoperability across critical sectors—including healthcare, transportation, and industrial control. Yet this very interconnection enables complex, multi-hop attack paths against cyber-physical systems. We present a web application (Ruby on Rails) that implements a methodology for identifying and assessing IoT-enabled attack paths, explicitly modeling both cyber and physical interactions. The approach leverages established standards (CVE/CVSS) and risk-oriented prioritization to reduce false positives and support targeted defensive actions.