Programming
Reader small image

You're reading from  Hands-On Edge Analytics with Azure IoT

Product typeBook
Published inMay 2020
PublisherPackt
ISBN-139781838829902
Edition1st Edition
Tools
Azure Stream Analytics
Concepts
Edge Computing
Right arrow
Author (1)
Colin Dow
Colin Dow
author image
Colin Dow

Colin Dow has been 3D printing since 2013 starting with the laser cut wooden frame version of the Ultimaker 3D printer. He has gone through a dozen or so 3D printers over the years from MakerBots, PrintrBots, early Prusa i3s, delta printers, and liquid resin printers. Colin has been working with OpenSCAD since 2014 using it with 3D printers to design and manufacture model rocketry parts for his model rocketry business. Through his aerospace workshops he has introduced many students to 3D printing including in-class demonstrations of 3D printing. Over the last few years Colin has been designing and building automated drones for his drone startup using 3D printers and OpenSCAD.
Read more about Colin Dow

Right arrow

Security and Privacy in an Edge Analytics World

When deploying an application to the internet, the risks posed by cyber criminals should be taken very seriously. Internet-enabled devices, including edge computers, are prone to cyber attacks, where they may be used to shut down websites or cause havoc on the internet—not to mention the destruction that cyber attacks can cause to our networked applications.

In this chapter, we will cover security—and, in turn, privacy—when it comes to our edge analytics applications.

The following topics will be covered in this chapter:

  • An overview of the Internet-of-Things security
  • Types of attacks against our edge analytics applications
  • Protecting our edge analytics applications
  • Monitoring and auditing our edge analytics applications

An overview of the Internet-of-Things security

Starting in September 2016, the Mirai botnet launched a distributed denial of service (DDoS) attack using the Internet of Things (IoT) devices on some of the biggest websites in the world, including Reddit, Airbnb, and Netflix. Flooding the DNS provider of these websites with more than 1 TB of data per second from captured devices, the cyber attack was one of the biggest DDoS attacks ever recorded.

So, what exactly is a DDoS attack and how are IoT devices involved? The following diagram shows what a DDoS attack with IoT devices might look like:

DDoS is an attack on a website that overwhelms it with excessive traffic, causing the website to fail. This type of attack is beneficial to the website's competitors. In the case of the Mirai botnet, the attack was designed by students interested in disabling competing Minecraft servers...

Types of attacks against our edge analytics applications

By its very nature, an edge analytics application is more secure than a pure IoT application. This is due to the fact that we limit the amount of information that is transmitted over the internet. However, there are still security concerns we must take into account.

The following are three examples of these concerns.

Vulnerability issues

Vulnerabilities in our internet-facing interfaces may be exploited by cyber criminals. These vulnerabilities include using default passwords and out-of-date software updates. In the following diagram, we can see the vulnerabilities of the internet-facing interfaces of the smart doorbell application we built in the previous chapter:

...

Protecting our edge analytics applications

Protecting our edge analytics applications may be a simple matter of changing our passwords frequently or placing our edge devices in secure locations. Also, the use of SSL certificates ensures that the data we transmit across the internet is encrypted. In this section, we will discuss some of the methods of ensuring our edge analytics applications are as secure as possible from cyber crime. We will start by looking at passwords.

Passwords and updates

In Chapter 6, Using MicroPython for Edge Analytics, we used a few microcontrollers as edge devices. Microcontrollers, such as Pycom's LoPy, use default usernames and passwords for both the WiFi access point and FTP file transfers...

Monitoring and auditing our edge analytics applications

Security is a big concern for our applications and must be taken into account when building and deploying them. The question we should ask is how do we get on top of it? The key to mitigating security concerns is monitoring and auditing the devices on our applications. By analyzing the traffic that flows into our applications, we can set up alerts to let us know whether there are any possible security threats. Also, by keeping an audit of our devices and addressing possible security concerns before deployment, we can patch known security holes before they become a problem.

Let's take a look at monitoring, first.

Monitoring our edge analytics applications

For edge...

Summary

In this chapter, we started our discussion on security and privacy by describing a cyber attack involving IoT devices. Although our edge analytics applications offer a bit of a buffer against the unauthorized use of devices, there is still a lot that should concern us when it comes to security.

We then looked at some of the various types of attacks that we should look out for when building and deploying our applications. These include issues with vulnerability, sniffing of our data, and spoofing of our devices, such that our application confuses the fake device for one of our own.

We then took a look at how we can protect our edge analytics applications by confirming the updates of passwords and security patches. We discussed how physical security can be implemented to keep remote devices safe. We also looked at how secure internet connections work and took a high-level...

Questions

Having read this chapter, try answering the following questions on your own:

  1. True/False. The code used in the Mirai botnet attack in 2016 was released to the public in order to create plausible deniability for the creators.
  2. True/False. A command and control server is used in DDoS attacks.
  3. What is a cross-site scripting attack?
  4. Name three of the possible types of attacks against our edge analytics applications.
  5. True/False. A sniffer is a type of spying tool that is set up between our internet router and edge computer.
  6. How does a cyber criminal trick you into giving them your username and password when you log on to a legitimate website?
  7. True/False. A physical key switch can be used as a form of security protection on our edge device.
  8. What are some of the libraries that we can use to write a machine learning module?
  9. True/False. The name of the Microsoft tool used to monitor...

Further reading

lock icon
The rest of the chapter is locked
Previous Chapter
Chapter 13 of 15
Next Chapter
You have been reading a chapter from
Hands-On Edge Analytics with Azure IoT
Published in: May 2020Publisher: PacktISBN-13: 9781838829902
© 2020 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at $15.99/month. Cancel anytime

Author (1)

author image
Colin Dow

Colin Dow has been 3D printing since 2013 starting with the laser cut wooden frame version of the Ultimaker 3D printer. He has gone through a dozen or so 3D printers over the years from MakerBots, PrintrBots, early Prusa i3s, delta printers, and liquid resin printers. Colin has been working with OpenSCAD since 2014 using it with 3D printers to design and manufacture model rocketry parts for his model rocketry business. Through his aerospace workshops he has introduced many students to 3D printing including in-class demonstrations of 3D printing. Over the last few years Colin has been designing and building automated drones for his drone startup using 3D printers and OpenSCAD.
Read more about Colin Dow

Other recommended products

Related to this chapter

Azure IoT Development Cookbook

Azure IoT Development Cookbook

It is important to develop robust and reliable solutions for your organization to leverage IoT services. Microsoft’s end-to-end IoT platform is the most complete IoT offering. It empowers enterprises to build and realize value from their IoT solutions for innovative business outcomes with Microsoft Azure IoT. This book will teach you how to connect multiple devices to the Azure IoT hub, develop, manage the IoT hub service, and integrate the hub with the cloud.

BookAug 2017254 pages
Internet of Things Programming Projects

Internet of Things Programming Projects

Taking a project-based approach this book will help you leverage sensors, actuators, Python programming and Raspberry Pi 3 to build connected things. Each chapter is an independent project where you will learn from connecting devices to building complex IoT projects. You will be well versed in every possible way to make your projects stand out.

BookOct 2018436 pages
Hands-On Internet of Things with Blynk

Hands-On Internet of Things with Blynk

Blynk is gaining a lot of popularity among the masses as it is simple and portable to use, and it comes under mobile applications and devices. The book will introduce you to Blynk and will demonstrate how to setup the environment for building IoT applications. You will then deep dive into concepts like building a notification widget, display widget, and controller widgets. Besides this, you will learn how to build a Blynk server and then create a Blynk application on it. You will have hands-on experience in building IoT applications using Blynk.

BookMay 2018271 pages
Intelligent IoT Projects in 7 Days

Intelligent IoT Projects in 7 Days

Internet of Things (IoT) is a ground-breaking technology that involves connecting numerous physical devices to the Internet and controlling them. Analyzing data from Internet of Things devices and converting it into something meaningful is currently driving the next level of IoT learning.

BookSep 2017206 pages
Practical Node-RED Programming

Practical Node-RED Programming

Understand how Node-RED, the free and open-source flow-based programming tool, is used for handling IoT data and how it allows programmers of any level to interconnect I/O, APIs, and online services in new and exciting ways. This book is a comprehensive introduction to Node-RED and will get you up to speed with building web apps in no time.

BookMar 2021326 pages5
Hands-On Robotics Programming with C++

Hands-On Robotics Programming with C++

C/C++ is one the legacy programming language for Robotics Programming. This book will help you understand and build complexly structured robots and implement various C/C++ programming libraries in it.

BookMar 2019312 pages
Enterprise Internet of Things Handbook

Enterprise Internet of Things Handbook

Internet of Things is today and now. This “hand” book covers almost all the bare essential knowledge that is needed for an architect or a developer to build IoT solution. Right from understanding what IoT is and exploring various off of the shelf IoT platforms, this book has it all. This book also covers Machine Learning IoT at a basic level using Azure Machine Learning Studio.

BookApr 2018332 pages
Artificial Intelligence for IoT Cookbook

Artificial Intelligence for IoT Cookbook

This cookbook will guide you through recipes for implementing analytics over data streams to discover new information, predict future insights, and make informed decisions. In addition to exploring an overview of AI techniques for analytics and learning in IoT applications, you’ll gain the skills you need to effectively package and deploy AI apps.

BookMar 2021260 pages
Learn Arduino Prototyping in 10 days

Learn Arduino Prototyping in 10 days

The Arduino platform is well-known for creating innovative micro-controller-based devices starting from a simple digital clock to a sophisticated drone. This book will teach you to prototype standalone and wireless devices through various hands-on projects.

BookJun 2017288 pages
Building Bluetooth Low Energy Systems

Building Bluetooth Low Energy Systems

Technology is expanding and so are our networks. The coming era is the age of the Internet of Things and it requires a seamless integration of software with hardware. The need for power-efficient connectivity is greater than ever. Bluetooth Low Energy presents a low-cost, small-distance communication platform that completely solves this problem. This book will introduce you to the technical aspects and implementation of BLE, which will enable you to create customized Bluetooth Low Energy Systems for day-to-day use.

BookApr 2017242 pages
IoT and Edge Computing for Architects

IoT and Edge Computing for Architects

New edition of the top-selling guide to IoT and edge computing for architects that helps you create IoT solutions for a variety of industries and organizations.

BookMar 2020632 pages
Hands-On IoT Solutions with Blockchain

Hands-On IoT Solutions with Blockchain

IoT and Blockchain are not limited to certain industries or use cases. Almost any business with a network and IoT device can reduce costs, improve business efficiency, and remove single points of failure in networks by implementing Blockchain. This book will help you implement an end-to-end Blockchain and IoT solution using best practices.

BookJan 2019206 pages

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

BookSep 2023288 pages
Expert C++

Expert C++

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

BookAug 2023604 pages
iOS 17 Programming for Beginners

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

BookOct 2023604 pages4
Developer Career Masterplan

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

BookSep 2023310 pages
Refactoring with C#

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

BookNov 2023434 pages
Python Real-World Projects

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

BookSep 2023478 pages5
The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

BookNov 2023386 pages
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Quantum Computing Algorithms

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

BookSep 2023342 pages
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5