Cybersecurity profiles based on human-centric IoT devices

This paper proposes a methodology based on the concept of Human Factors to obtain Cybersecurity profiles. The profiles are determined by a set of parameters that help model the skills of individuals (potential offenders, victims, etc.) during a digital investigation. The definition is flexible enough to allow the cybersecurity profiles to grow when more data is available. A critical part of the solution is the inclusion of personal devices as important elements of the profiles. This is highly relevant as paradigms such as the Internet of Things (IoT) are transforming society, bringing humans closer to their devices than ever before. IoT devices also produce a lot of data, which can be useful to complete cybersecurity profiles and therefore understand the whole context of a digital investigation. Thus, IoT devices are included in the proposed methodology to capitalise on the strong dependence between users and devices during the analysis.