O'Reilly logo
  • Andrea Kole thinks this is interesting:

This chapter addresses the differences between secrecy and secret-key generation in web applications versus the Internet of Things (IoT). Authentication using OAuth and OpenID is discussed, as well as encryption using secure sockets layer, transport layer security, and HTTPS. The chapter outlines the basic structure of the IoT cloud structure, the machine-to-machine gateway by which systems of smart devices are connected. The vulnerabilities of protecting the IoT using software are discussed, as well as the benefits of implementing a software/firmware update. Types of attacks at the physical layer are discussed, including side channel attack, timing attack, IoT device capture, etc.