{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,7]],"date-time":"2025-08-07T20:29:03Z","timestamp":1754598543513},"publisher-location":"Cham","reference-count":41,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319584232"},{"type":"electronic","value":"9783319584249"}],"license":[{"start":{"date-parts":[[2017,8,13]],"date-time":"2017-08-13T00:00:00Z","timestamp":1502582400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-58424-9_9","type":"book-chapter","created":{"date-parts":[[2017,8,12]],"date-time":"2017-08-12T03:33:44Z","timestamp":1502508824000},"page":"153-172","source":"Crossref","is-referenced-by-count":13,"title":["Differentiating Security from Privacy in Internet of Things: A Survey of Selected Threats and Controls"],"prefix":"10.1007","author":[{"given":"A.","family":"Al-Gburi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"A.","family":"Al-Hasnawi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"L.","family":"Lilien","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,8,13]]},"reference":[{"key":"9_CR1","doi-asserted-by":"publisher","unstructured":"Sundmaeker, H., Guillemin, P., Friess, P., & Woelffl\u00e9, S. (2010). Vision and challenges for realising the Internet of Things. Cluster of European Research Projects on the Internet of Things, European Commission (CERP-IoT). doi: \n10.2759\/26127","DOI":"10.2759\/26127"},{"key":"9_CR2","volume-title":"Security in computing","author":"CP Pfleeger","year":"2015","unstructured":"Pfleeger, C. P., Pfleeger, S. L., & Margulies, J. (2015). Security in computing (5th ed.). Englewood Cliffs, NJ: Prentice Hall.","edition":"5"},{"key":"9_CR3","volume-title":"Treatise on the law of torts or the wrongs which arise independent of contract","author":"TM Cooley","year":"1879","unstructured":"Cooley, T. M. (1879). Treatise on the law of torts or the wrongs which arise independent of contract. Chicago: Callaghan."},{"issue":"4","key":"9_CR4","first-page":"20","volume":"30","author":"G Yang","year":"2010","unstructured":"Yang, G., Xu, J., Chen, W., Qi, Z. H., & Wang, H. Y. (2010). Security characteristic and technology in the Internet of Things. Journal of Nanjing University of Posts and Telecommunications, 30(4), 20\u201329.","journal-title":"Journal of Nanjing University of Posts and Telecommunications"},{"issue":"4","key":"9_CR5","doi-asserted-by":"crossref","first-page":"2347","DOI":"10.1109\/COMST.2015.2444095","volume":"17","author":"A Al-Fuqaha","year":"2015","unstructured":"Al-Fuqaha, A., Guizani, M., Mohammadi, M., Aledhari, M., & Ayyash, M. (2015). Internet of Things: A survey on enabling technologies, protocols, and applications. IEEE Communications Surveys & Tutorials, 17(4), 2347\u20132376.","journal-title":"IEEE Communications Surveys & Tutorials"},{"key":"9_CR6","unstructured":"Lilien, L., Kamal, Z., Bhuse, V., & Gupta, A. (2006). Opportunistic networks: the concept and research challenges in privacy and security. Proceedings of International Workshop on Research Challenges in Security and Privacy for Mobile and Wireless Networks, Miami, FL, pp. 134\u2013147."},{"key":"9_CR7","doi-asserted-by":"crossref","unstructured":"Lilien, L., Gupta, A., Kamal, Z., & Yang, Z. (2010). Opportunistic resource utilization networks\u2014a new paradigm for specialized ad hoc networks [Special Issue: Wireless Ad Hoc, Sensor and Mesh Networks, Elsevier]. Computers and Electrical Engineering, 36(2), 328\u2013340.","DOI":"10.1016\/j.compeleceng.2009.03.010"},{"key":"9_CR8","doi-asserted-by":"crossref","first-page":"120","DOI":"10.1016\/j.jnca.2014.01.014","volume":"42","author":"Z Yan","year":"2014","unstructured":"Yan, Z., Zhang, P., & Vasilakos, A. V. (2014). A survey on trust management for Internet of Things. Journal of Network and Computer Applications, 42, 120\u2013134.","journal-title":"Journal of Network and Computer Applications"},{"key":"9_CR9","volume-title":"RFID security and privacy: Threats and countermeasures","author":"M Spruit","year":"2013","unstructured":"Spruit, M., & Wester, W. (2013). RFID security and privacy: Threats and countermeasures. Utrecht: Department of Information and Computing Sciences, Utrecht University."},{"issue":"5","key":"9_CR10","doi-asserted-by":"crossref","first-page":"491","DOI":"10.1007\/s10796-009-9210-z","volume":"12","author":"A Mitrokotsa","year":"2010","unstructured":"Mitrokotsa, A., Rieback, M. R., & Tanenbaum, A. S. (2010). Classification of RFID attacks. Journal of Information Systems Frontiers, 12(5), 491\u2013505.","journal-title":"Journal of Information Systems Frontiers"},{"key":"9_CR11","doi-asserted-by":"crossref","first-page":"43","DOI":"10.1016\/j.adhoc.2015.01.003","volume":"32","author":"JM Fuentes De","year":"2015","unstructured":"De Fuentes, J. M., Peris-Lopez, P., Tapiador, J. E., & Pastrana, S. (2015). Probabilistic yoking proofs for large scale IoT systems. Ad Hoc Networks, 32, 43\u201352.","journal-title":"Ad Hoc Networks"},{"key":"9_CR12","unstructured":"Katagi, M., & Moriai, S. (2011). Lightweight cryptography for the Internet of Things (Technical Report). Tokyo: Sony Corporation. Online: \nhttp:\/\/www.iab.org\/wp-content\/IAB-uploads\/2011\/03\/Kaftan.pdf"},{"key":"9_CR13","unstructured":"Specht, S. M., & Lee, R. B. (2004). Distributed denial of service: taxonomies of attacks, tools, and countermeasures. Proceedings of ISCA International Conference on Parallel and Distributed Computing Systems (PDCS), San Francisco, CA, pp. 543\u2013550."},{"issue":"7","key":"9_CR14","doi-asserted-by":"crossref","first-page":"1","DOI":"10.5120\/19547-1280","volume":"111","author":"MU Farooq","year":"2015","unstructured":"Farooq, M. U., Waseem, M., Khairi, A., & Mazhar, S. (2015). A critical analysis on the security concerns of Internet of Things (IoT). International Journal of Computer Applications, 111(7), 1\u20136.","journal-title":"International Journal of Computer Applications"},{"key":"9_CR15","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-319-33124-9","volume-title":"Connectivity frameworks for smart devices","author":"Z Mahmood","year":"2016","unstructured":"Mahmood, Z. (2016). Connectivity frameworks for smart devices. Cham: Springer International Publishing."},{"issue":"2","key":"9_CR16","doi-asserted-by":"crossref","first-page":"147","DOI":"10.1016\/j.compeleceng.2011.01.009","volume":"37","author":"R Roman","year":"2011","unstructured":"Roman, R., Alcaraz, C., Lopez, J., & Sklavos, N. (2011). Key management systems for sensor networks in the context of the Internet of Things. Computers & Electrical Engineering, 37(2), 147\u2013159.","journal-title":"Computers & Electrical Engineering"},{"key":"9_CR17","doi-asserted-by":"crossref","unstructured":"Alani, M. M. (2016). Elements of cloud computing security: A survey of key practicalities. Springer Briefs in Computer Science. Berlin: Springer International Publishing.","DOI":"10.1007\/978-3-319-41411-9"},{"key":"9_CR18","unstructured":"Zunnurhain, K., & Vrbsky, S. V. (2010). Security attacks and solutions in clouds. Proceedings of the 1st International Conference on Cloud Computing, Tuscaloosa, AL, pp. 145\u2013156."},{"key":"9_CR19","unstructured":"Anggorojati, B. (2015). Access control in IoT\/M2M-cloud platform. Ph.D. dissertation, The Faculty of Engineering and Science, Aalborg University, Aalborg, Denmark."},{"issue":"1","key":"9_CR20","doi-asserted-by":"crossref","first-page":"25","DOI":"10.1016\/j.jnca.2012.08.007","volume":"36","author":"A Patel","year":"2013","unstructured":"Patel, A., Taghavi, M., Bakhtiyari, K., & J\u00fanior, J. C. (2013). An intrusion detection and prevention system in cloud computing: A systematic review. Journal of Network and Computer Applications, 36(1), 25\u201341.","journal-title":"Journal of Network and Computer Applications"},{"key":"9_CR21","unstructured":"Ahmed, N. (2016). Designing, implementation and experiments for moving target defense. Ph.D. dissertation, Department of Computer Science, Purdue University, West Lafayette, IN."},{"issue":"1","key":"9_CR22","doi-asserted-by":"crossref","first-page":"74","DOI":"10.1145\/2063176.2063197","volume":"55","author":"J Hong","year":"2012","unstructured":"Hong, J. (2012). The state of phishing attacks. Communications of the ACM, 55(1), 74\u201381.","journal-title":"Communications of the ACM"},{"key":"9_CR23","unstructured":"Muir, B. (2009). Radio frequency identification: privacy & security issues (slides). Slide Share. Online: \nhttp:\/\/www.slideshare.net\/bsmuir\/rfid-privacy-security-issues-31614795"},{"key":"9_CR24","unstructured":"Thompson, D. R., Chaudhry, N., & Thompson, C. W. (2006). RFID security threat model. In Proceedings of Conference on Applied Research in Information Technology, Conway, AR."},{"key":"9_CR25","unstructured":"Virmani, D., Soni, A., Chandel, S., & Hemrajani, M. (2014). Routing attacks in wireless sensor networks: A survey. arXiv preprint arXiv:1407.3987."},{"key":"9_CR26","doi-asserted-by":"crossref","unstructured":"Ben Othmane, L., & Lilien, L. (2009). Protecting privacy in sensitive data dissemination with active bundles. In Proceedings of Seventh Annual Conference on Privacy, Security and Trust (PST) (pp. 202\u2013213). Saint John, NB.","DOI":"10.1109\/CONGRESS.2009.30"},{"key":"9_CR27","unstructured":"Sibert, O., Bernstein, D., & Van Wie, D. (1995). The DigiBox: A self-protecting container for information commerce. Proceedings of First USENIX Workshop on Electronic Commerce, New York, NY, pp. 15\u201315."},{"key":"9_CR28","unstructured":"Berthold, O., & Langos, H. (2002). Dummy traffic against long term intersection attacks. In Proceedings of International Workshop on Privacy Enhancing Technologies (pp. 110\u2013128). Berlin: Springer."},{"key":"9_CR29","unstructured":"PCI Security Standards Council. (2010). Initial roadmap: point-to-point encryption technology and PCI DSS compliance. Emerging Technology Whitepaper. Online: \nhttps:\/\/www.pcisecuritystandards.org\/documents\/pci_ptp_encryption.pdf"},{"key":"9_CR30","doi-asserted-by":"crossref","unstructured":"Wan, Z., Xing, K., & Liu, Y. (2012). Priv-Code: Preserving privacy against traffic analysis through network coding for multi-hop wireless networks. Proceedings of 31st Annual IEEE International Conference on Computer Communications (INFOCOM), Orlando, FL, pp. 73\u201381.","DOI":"10.1109\/INFCOM.2012.6195820"},{"key":"9_CR31","doi-asserted-by":"crossref","unstructured":"Pearson, S. (2009). Taking account of privacy when designing cloud computing services. Proceedings of the ICSE Workshop on Software Engineering Challenges for Cloud Computing, Vancouver, BC, pp. 44\u201352.","DOI":"10.1109\/CLOUD.2009.5071532"},{"key":"9_CR32","unstructured":"Waterson, D. (2015). IoT inference attacks from a whole lotta talkin\u2019 going on. Thoughts on Information Security. Online: \nhttps:\/\/dwaterson.com\/2015\/08\/26\/iot-inference-attacks-froma-whole-lotta-talkin-going-on\/"},{"key":"9_CR33","doi-asserted-by":"crossref","unstructured":"Squicciarini, A., Sundareswaran, S., & Lin, D. (2010). Preventing information leakage from indexing in the cloud. Proceedings of 3rd IEEE International Conference on Cloud Computing, Miami, FL, pp. 188\u2013195.","DOI":"10.1109\/CLOUD.2010.82"},{"issue":"3","key":"9_CR34","doi-asserted-by":"crossref","first-page":"41","DOI":"10.5121\/ijnsa.2012.4303","volume":"4","author":"R Nasim","year":"2012","unstructured":"Nasim, R. (2012). Security threats analysis in Bluetooth-enabled mobile devices. International Journal of Network Security & its Applications, 4(3), 41\u201356.","journal-title":"International Journal of Network Security & its Applications"},{"key":"9_CR35","unstructured":"Monir, S. (2017). A Lightweight attribute-based access control system for IoT. Ph.D. dissertation, University of Saskatchewan, Saskatoon, SK."},{"issue":"16","key":"9_CR36","first-page":"29","volume":"5","author":"M Tebaa","year":"2014","unstructured":"Tebaa, M., & Hajji, S. E. (2014). Secure cloud computing through homomorphic encryption. International Journal of Advancements in Computing Technology (IJACT), 5(16), 29\u201338.","journal-title":"International Journal of Advancements in Computing Technology (IJACT)"},{"key":"9_CR37","volume-title":"Digital rights management: Technology, standards and applications","author":"A Tchao","year":"2017","unstructured":"Tchao, A., Di Marzo, G., & Morin, J. H. (2017). Personal DRM (PDRM)\u2014A self-protecting content approach. In F. Hartung et al. (Eds.), Digital rights management: Technology, standards and applications. New York: CRC Press, Taylor & Francis Group."},{"issue":"12","key":"9_CR38","doi-asserted-by":"crossref","first-page":"2728","DOI":"10.1002\/sec.795","volume":"7","author":"H Ziegeldorf","year":"2014","unstructured":"Ziegeldorf, H., Morchon, G., & Wehrle, K. (2014). Privacy in the Internet of Things: Threats and challenges. Security and Communication Networks, 7(12), 2728\u20132742.","journal-title":"Security and Communication Networks"},{"key":"9_CR39","unstructured":"Pfitzmann, A., & Hansen, M. (2010). A terminology for talking about privacy by data minimization: Anonymity, unlinkability, undetectability, unobservability, pseudonymity, and identity management (Version v0.34). Online: \nhttps:\/\/dud.inf.tu-dresden.de\/literatur\/Anon_Terminology_v0.34.pdf"},{"issue":"1","key":"9_CR40","doi-asserted-by":"crossref","first-page":"83","DOI":"10.1002\/wics.3","volume":"1","author":"G Duncan","year":"2009","unstructured":"Duncan, G., & Stokes, L. (2009). Data masking for disclosure limitation. Wiley Interdisciplinary Reviews: Computational Statistics, 1(1), 83\u201392.","journal-title":"Wiley Interdisciplinary Reviews: Computational Statistics"},{"issue":"4","key":"9_CR41","doi-asserted-by":"crossref","first-page":"1373","DOI":"10.1109\/TVT.2006.877704","volume":"55","author":"K Ren","year":"2006","unstructured":"Ren, K., Lou, W., Kim, K., & Deng, R. (2006). A novel privacy preserving authentication and access control scheme for pervasive computing environments. IEEE Transactions on Vehicular Technology, 55(4), 1373\u20131384.","journal-title":"IEEE Transactions on Vehicular Technology"}],"container-title":["Computer and Network Security Essentials"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-58424-9_9","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,8,12]],"date-time":"2017-08-12T03:37:36Z","timestamp":1502509056000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-58424-9_9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,8,13]]},"ISBN":["9783319584232","9783319584249"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-58424-9_9","relation":{},"subject":[],"published":{"date-parts":[[2017,8,13]]}}}