Off-campus SJSU users: To download campus access theses, please use the following link to log into our proxy server with your SJSU library user name and PIN.

Publication Date

Fall 2024

Degree Type

Thesis - Campus Access Only

Degree Name

Master of Science (MS)

Department

Aerospace Engineering

Advisor

Armin Moghadam; Kidane Sengal; Wael Abdeljabbar

Abstract

The security of IoT systems is increasingly critical as they face growing cyber threats. This research focuses on identifying and mitigating vulnerabilities in the Smart IoT Parking System by examining common attack vectors, including hping3 flood attacks, Hydra brute-force attempts, Nmap scanning, and Ettercap man-in-the-middle attacks. The NIST Cybersecurity Framework guided our approach, focusing on its core functions: Identify, Protect, Detect, Respond, Recover, and Govern, to systematically enhance the system’s security posture. Nmap scans were crucial in the Identify phase, revealing exposed ports and services. To Protect the system, we deployed UFW and Fail2ban, which dynamically managed access and blocked brute-force attempts. Real-time network monitoring through Wireshark and Ettercap helped Detect attacks, while ArpOn prevented ARP poisoning, and HTTPS encryption secured communications. The Respond and Recover phases were automated through Webmin and system backup, ensuring prompt incident management and minimizing disruptions. This multi-layered defense, combining firewalls, encryption, intrusion detection, and governance frameworks, effectively secured the Smart IoT Parking System. The findings emphasize the importance of continuous monitoring and adaptive security mechanisms in IoT environments to counter evolving cyber threats.

Download

Share

COinS