Towards the open ontology for IoT ecosystem’s security

The IoT ecosystem is complex and includes hardware devices, services, software, connectivity, standards and protocols. IoT is continuously and persistently contributing to the ubiquity of technology in all aspects of human endeavours, and trends seem to indicate that myriad of IoT solutions are developed and/or bought for various purposes, from the personal home to industrial usages, with the alarming lack of security concerns, giving priority mostly to the fast and cost-effective development. Given the complex nature of such solutions, it is rarely seen that the security aspect is considered through all of the IoT ecosystem elements; also, one of the significant reasons being that the IoT solutions are not always developed in a holistic nature, within the same company, but only provide parts of the complete IoT solution. In order to enable easier and more secure development of IoT solutions, this paper presents first steps towards developing the open ontology for IoT ecosystem elements security, relating them with existing security concepts, primitives, threats, vulnerabilities and practices.