Nowadays, not many people can walk down the street without running into someone connected to cyberspace. The Internet of Things is a broad term used to define an entire system of devices connected to cyberspace that can communicate with one another. As shown in figure 1.1, there are many devices just at home that can be considered a part of the IoT. This figure is just a small example of all devices that are connected to cyberspace. The term IoT can cover phones, watches, laptops and just about anything mobile that connects to cyberspace. With the IoT constantly expanding due to new internet ready devices introduced, new security measures must be taken to protect these devices. Every new device introduced into the IoT is a potential entry
…show more content…
One solution to secure these devices physically is the use of biometrics. Biometric security is the use of a biological data to secure the phone, this includes fingerprint, iris or face scanners. As previously stated, the use of four number pins are ineffective because if given enough time or preparation, any hacker can bypass this. This problem is similar for most passwords within any online service, which is why most phones offer to save passwords when accessing certain applications. The main problem with a password is that it must be long and difficult to guess for it to be effective. But this causes users to use the same password across different services, or just use simple passwords that are easy to remember (Albahdal and Boult 294). Biometric data offers a substantial increase in security over the traditional password system since there is no forgetting your biometrics and there is no guessing your biometrics. Many companies, such as Apple, Google and Samsung, are adopting biometrics as a form of security for mobile phones. Biometrics on a small scale, like just on a mobile phone, is effective. But, there are some shortcomings when it comes to biometric security in the …show more content…
For XSS attacks, prevention is consumer safety. Questionable links, emails, messages and websites should always be avoided and antivirus programs should always be up to date. An SQLi attack is different, this form of attack must be dealt with by the individual operating the website. One suggestion that looks promising is System Query Injection Prevention by Input Labeling(SQLiPIL). An SQLiPIL is a tool that is automated and effective in preventing SQLi attacks (Masri and Sleiman 2545). This tool takes a website coded in java with SQL strings and converts those strings into prepared statements dynamically, ensuring that they are using prepared statements rather than allowing user input to act directly with the code. A prepared statement is a string of code that is already produced within the program. It is already suggested that coders using java should use prepared statements, but it is not a widespread practice (Masri and Sleiman 2556). This code helps alleviate that problem by dynamically manipulating a website code to ensure it’s more
One solution to secure these devices physically is the use of biometrics. Biometric security is the use of a biological data to secure the phone, this includes fingerprint, iris or face scanners. As previously stated, the use of four number pins are ineffective because if given enough time or preparation, any hacker can bypass this. This problem is similar for most passwords within any online service, which is why most phones offer to save passwords when accessing certain applications. The main problem with a password is that it must be long and difficult to guess for it to be effective. But this causes users to use the same password across different services, or just use simple passwords that are easy to remember (Albahdal and Boult 294). Biometric data offers a substantial increase in security over the traditional password system since there is no forgetting your biometrics and there is no guessing your biometrics. Many companies, such as Apple, Google and Samsung, are adopting biometrics as a form of security for mobile phones. Biometrics on a small scale, like just on a mobile phone, is effective. But, there are some shortcomings when it comes to biometric security in the …show more content…
For XSS attacks, prevention is consumer safety. Questionable links, emails, messages and websites should always be avoided and antivirus programs should always be up to date. An SQLi attack is different, this form of attack must be dealt with by the individual operating the website. One suggestion that looks promising is System Query Injection Prevention by Input Labeling(SQLiPIL). An SQLiPIL is a tool that is automated and effective in preventing SQLi attacks (Masri and Sleiman 2545). This tool takes a website coded in java with SQL strings and converts those strings into prepared statements dynamically, ensuring that they are using prepared statements rather than allowing user input to act directly with the code. A prepared statement is a string of code that is already produced within the program. It is already suggested that coders using java should use prepared statements, but it is not a widespread practice (Masri and Sleiman 2556). This code helps alleviate that problem by dynamically manipulating a website code to ensure it’s more