Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS

OWASP IoT Security Verification Standard (ISVS)
https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS

Last synced: 14 days ago
JSON representation

OWASP IoT Security Verification Standard (ISVS)

Host: GitHub
URL: https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS
Owner: OWASP
License: other
Created: 2020-03-03T16:30:59.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2022-12-13T09:23:11.000Z (over 1 year ago)
Last Synced: 2024-05-01T11:53:13.916Z (about 2 months ago)
Language: TeX
Homepage:
Size: 2.87 MB
Stars: 129
Watchers: 19
Forks: 50
Open Issues: 9
Metadata Files:
- Readme: README.md
- Contributing: Contributing.md
- License: License.md

Lists

IoTSecurity101 - IoT Security Verification Standard (ISVS)

README

# IoT Security Verification Standard (ISVS)

[![Creative Commons License](https://licensebuttons.net/l/by-sa/4.0/88x31.png)](https://creativecommons.org/licenses/by-sa/4.0/ "CC BY-SA 4.0")
[![Document Build Status](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/workflows/Document%20Build/badge.svg)](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/actions?workflow%3A"Document+Build")
[![Slack](https://img.shields.io/badge/chat%20on-slack-46BC99.svg)](https://owasp.slack.com/messages/project-isvs)

The OWASP Internet of Things Security Verification Standard (ISVS) is a community effort to establish an open standard of security requirements for Internet of Things (IoT) ecosystems. The requirements provided by the ISVS can be used at many stages during the Development Life Cycle including design, development, and testing of IoT ecosystems.

IoT ecosystems are often complex collections of many interconnected systems. Some of these interconnected systems are IoT systems, containing connected devices and their components, both software and hardware. Others examples of systems in IoT ecosystems are web or mobile applications and cloud components.

The ISVS focuses on providing security requirements for IoT systems and their components: IoT hardware, software, embedded applications and communication protocols. It also provides some general requirements for the IoT ecosystems in which IoT systems reside, while referring to existing industry-accepted standards as much as possible.

## Peer Review Requested
The first version of the OWASP ISVS is ready for a peer review. "Pre-release 1.0RC" can be acquired in the following formats:

* The [releases page](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/releases) contains PDF, EPUB, Docx, CSV, JSON and XML versions of the standard.
* The latest version of the main branch can be read on [GitBook](https://owasp-isvs.gitbook.io/owasp-isvs-pr).

### Read Individual Sections of the ISVS Below
* [Frontispiece](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/0x01-Frontispiece.md)
* [Using the ISVS](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/Using_ISVS.md)
* [V1: IoT Ecosystem Requirements](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/V1-IoT_Ecosystem_Requirements.md)
* [V2: User Space Application Requirements](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/V2-User_Space_Application_Requirements.md)
* [V3: Software Platform Requirements](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/V3-Software_Platform_Requirements.md)
* [V4: Communication Requirements](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/V4-Communication_Requirements.md)
* [V5: Hardware Platform Requirements](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/V5-Hardware_Platform_Requirements.md)
* [Appendix A - Glossary](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/en/Appendix_A-Glossary.md)

## How to Contribute
The ISVS is an open source effort and we welcome contributions and feedback. If you want to contribute additional content, improve existing content, or provide your feedback, we suggest that you do so through:

* The OWASP ISVS [Slack channel](https://owasp.slack.com/messages/project-isvs/details/). You can sign up [here](https://owasp.slack.com/join/shared_invite/zt-g398htpy-AZ40HOM1WUOZguJKbblqkw#/).
* Through creating an [issue](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/issues) or a [pull request](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/pulls).

Before you start contributing, please check our [contribution guide](https://github.com/OWASP/IoT-Security-Verification-Standard-ISVS/blob/master/Contributing.md "Contribution Guide") which should get you started.

## Project Leads
* [Aaron Guzman](mailto:[email protected])
* [Cédric Bassem](mailto:[email protected])