Automated IoT Security Configuration Audit Framework in AWS Cloud for Real-Time Threat Detection

Automated IoT Security Configuration Audit Framework in AWS Cloud for Real-Time Threat Detection

연구 분야: Infrastructure

학회: 2025 International Conference on Emerging Technologies in Computing and Communication (ETCC)

The widespread deployment of Internet of Things (IoT) devices introduces significant security concerns due to frequent misconfigurations and outdated security protocols that create exploitable vulnerabilities. This paper proposes a novel automated framework for continuous auditing of security configurations in IoT ecosystems deployed on Amazon Web Services (AWS). The framework seamlessly integrates AWS IoT Core, Device Defender, Lambda, Security Hub, and SNS to create an end-to-end solution that identifies vulnerabilities and enforces remediation in real-time, differentiating it from existing isolated security tools. Experimental results demonstrate measurable improvements, including 93% reduction in misconfiguration identification time, automated remediation of critical vulnerabilities within minutes rather than hours, and centralized compliance monitoring that improves overall security posture. Testing with simulated IoT deployments showed the framework's scalability with consistent performance across varied device quantities, maintaining average response times of 3.5 seconds for critical incidents. The framework addresses existing gaps in IoT security management by providing a unified approach to configuration audits, automated remediation, and compliance monitoring that requires minimal human intervention. Future work will focus on extending the architecture to multi-cloud environments and incorporating AI-based predictive security analytics.