Securing the Internet of Things: Mapping IoT Attack Surface Areas with the OWASP IoT Top 10 Project

  • Tuesday, April 21, 2015 | 4:40 PM – 5:30 PM | West | Room: 3004

View all Sessions

Securing the Internet of Things is a difficult task for many reasons, but the most important may be the fact that IoT is actually a collection of spaces instead of a space of its own. IoT is made up of networks, web applications, mobile applications, and cloud components—all assembled together to produce a usable system designed for maximum connectivity.

What could go right?


The OWASP Top 10 Project starts the security conversation by defining the 10 primary attack surface areas for the Internet of Things, and by giving prescriptive guidance on how various groups (manufacturers, developers, and consumers) can make better security decisions, when building and using IoT technologies.


The talk’s activities will include:

  • Outline the OWASP Top 10 Project and its Goals
  • Discuss the 10 IoT Attack Surface Areas
  • Explore the OWASP Guidance Given to Manufacturers, Developers and Consumers for Securing IoT
  • Provide a Set of Actionable IoT Security Recommendations Spanning Both Consumer and Corporate Environments



This document was retrieved from on Sun, 18 Aug 2019 18:02:22 -0400.