In this paper, an approach referred to as IoTsecM is proposed. This proposal is a UML/SysML extension for security requirements modeling within the analysis stage in a waterfall development life cycle in a Model-Based Systems Engineering Approach. IoTsecM allows the security requirements representation in two very well-known modeling languages, UML and SysML. With the utilization of this extension, IoT developers can consider the security requirements from the analysis stage in the design process of IoT systems. IoTsecM allows IoT systems to be designed considering possible threats and the corresponding security requirements analysis. The applicability of IoTsecM is demonstrated through applying it to analyze and represent the security requirements in an IoT real-life system in the context of collaborative autonomous vehicles in smart cities. In this use case, IoTsecM was able to represent the security requirements identified within the system architecture elements, in which all countermeasures identified were depicted using the proposed IoTsecM profile.
|Number of pages||24|
|Early online date||13 Nov 2021|
|Publication status||Published - 2021|
Bibliographical noteFunding Information:
This work was supported in part by the Consejo Nacional de Ciencia y Tecnolog?a (CONACY), and in part by the Instituto Polit?cnico Nacional under Grant SIP 1999 and Grant 20210039. The work of Theo Tryfonas was supported by the Department for Business, Energy and Industrial Strategy, U.K.
© 2013 IEEE.