Cloud 101CircleEventsBlog
Join AT&T's experts & CSA's Troy Leach on April 4 to boost your cyber resilience in 2024!

Download Publication

Identity and Access Management for the Internet of Things
Identity and Access Management for the Internet of Things

Identity and Access Management for the Internet of Things

Release Date: 09/28/2015

This document is the first in a series of summary guidance aimed at providing easily understandable recommendations to information technology staff charged with securely implementing and deploying IoT solutions. The IoT introduces the need to manage exponentially more identities than existing IAM systems are required to support. The security industry is seeing a paradigm shift whereby IAM is no longer solely concerned with managing people but also managing the hundreds of thousands of “things” that may be connected to a network. In many instances these things are connected intermittently and may be required to communicate with other things, mobile devices and the backend infrastructure. Some have begun to refer to this new identity ecosystem as the Identity of Things (IDoT). The IDoT refers to the relationships between devices and humans, devices and devices, devices and application/services or a human and an application/services. 
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
View translations
Related resources
Defining the Zero Trust Protect Surface
Defining the Zero Trust Protect Surface
The Six Pillars of DevSecOps - Collaboration and Integration
The Six Pillars of DevSecOps - Collaboration an...
The State of Security Remediation 2024
The State of Security Remediation 2024
How to Secure Business-Critical Applications
How to Secure Business-Critical Applications
Published: 03/28/2024
For Game-Changing Cloud Workload Protection, Focus on Quality Over Quantity
For Game-Changing Cloud Workload Protection, Focus on Quality Over ...
Published: 03/27/2024
Powerful Cloud Permissions You Should Know: Part 1
Powerful Cloud Permissions You Should Know: Part 1
Published: 03/26/2024
What's Broken with Identity Management?
What's Broken with Identity Management?
Published: 03/25/2024

Acknowledgements

John Yeoh
John Yeoh
Global Vice President of Research, CSA

John Yeoh

Global Vice President of Research, CSA

With over 15 years of experience in research and technology, John excels at executive-level leadership, relationship management, and strategy development. He is a published author, technologist, and researcher with areas of expertise in cybersecurity, cloud computing, information security, and next generation technology (IoT, Big Data, SecaaS, Quantum). John specializes in risk management, third party assessment, GRC, data protection, incid...

Read more

Luciano (J.R.) Santos
Luciano (J.R.) Santos
Chief Customer Officer, CSA

Luciano (J.R.) Santos

Chief Customer Officer, CSA

J.R. Santos serves as the Chief Customer Officer for the Cloud Security Alliance. In this role, J.R. serves as a CSA Member advocate, partnering with leaders across all business units to transform the member experience and ensure that members are the center of every business decision. J.R. leads the Experience Services organization that includes the CSA Membership and Sales team, who work collaboratively to promote a consistent experience f...

Read more

Brian Russell
Brian Russell

Brian Russell

Brian Russell is co-author of the book “Practical Internet of Things Security” and is a Chief Engineer focused on Cyber Security Solutions for Leidos (www.leidos.com). He oversees the design and development of security solutions and the implementation of privacy and trust controls for customers. Brian leads efforts that include security engineering for Unmanned Aerial Systems (UAS) and Connected Cars, and the development of hig...

Read more

​Aaron Guzman
​Aaron Guzman

​Aaron Guzman

Aaron is a passionate information security professional specializing in IoT, embedded, and automotive security. He is co-author of the “IoT Penetration Testing Cookbook” and a technical editor for the "Practical Internet of Things Security” Packt Publishing books. Aaron is co-chair of CSA’s IoT working group as well as a leader for OWASP’s IoT and Embedded Application Security projects; providing practical guidance to address the most commo...

Read more

Sabri Khemissa
Sabri Khemissa

Sabri Khemissa

Sabri is the ICS group cybersecurity officer a French multinational corporation that produce a variety of construction and high-performance materials. He is in charge of developing and maintaining the cybersecurity strategy, building and coordinate a cross-country and cross-business cybersecurity governance, supporting business initiatives, including strategic Smart Manufacturing and IIoT projects with a large shift to cloud services, defin...

Read more

Srinivas Tatipamula
Srinivas Tatipamula
Principal Security Advisor, Fairfax

Srinivas Tatipamula

Principal Security Advisor, Fairfax

C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics

Overall 30 plus years in IT and over 18 years in Cyber Security

Publications:

1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019

2. CSA IoT Controls Matrix March 2019

3. ...

Read more

K S Abhiraj Headshot Missing
K S Abhiraj

K S Abhiraj

This person does not have a biography listed with CSA.

Drew Van Duren Headshot Missing
Drew Van Duren

Drew Van Duren

This person does not have a biography listed with CSA.

Abhik Chaudhuri
Abhik Chaudhuri
Security GRC Team of TCS Global Technology Practice for the IoT and Smart Cities

Abhik Chaudhuri

Security GRC Team of TCS Global Technology Practice for the IoT and Smart Cities

Abhik Chaudhuri (PMP, ITIL Expert, Certified in Cobit Foundation, IBM accredited Senior IT Specialist, certified ISO 27001:2013 ISMS Lead Auditor, Member of IEEE SIG on IoT and Corporate Member of CSA’s International Standardization Council) isin the 14th year of IT Consulting profession and leading the Security GRC Team of TCS Global Technology Practice for the IoT and Smart Cities. Abhik has w...

Read more

Raghavender Duddilla Headshot Missing
Raghavender Duddilla

Raghavender Duddilla

This person does not have a biography listed with CSA.

Shyam Sundaram Headshot Missing
Shyam Sundaram

Shyam Sundaram

This person does not have a biography listed with CSA.

Ayoub Figuigui Headshot Missing
Ayoub Figuigui

Ayoub Figuigui

This person does not have a biography listed with CSA.

Vinay Bansal Headshot Missing
Vinay Bansal

Vinay Bansal

This person does not have a biography listed with CSA.

Jay Douglas Headshot Missing
Jay Douglas

Jay Douglas

This person does not have a biography listed with CSA.

Sudharma Thikkavarapu Headshot Missing
Sudharma Thikkavarapu

Sudharma Thikkavarapu

This person does not have a biography listed with CSA.

Arlene Mordeno Headshot Missing
Arlene Mordeno

Arlene Mordeno

This person does not have a biography listed with CSA.

Amit Pick Headshot Missing
Amit Pick

Amit Pick

This person does not have a biography listed with CSA.

Tom Donahoe Headshot Missing
Tom Donahoe

Tom Donahoe

This person does not have a biography listed with CSA.

Mike Flegel Headshot Missing
Mike Flegel

Mike Flegel

This person does not have a biography listed with CSA.

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training