Zero-Trust in Connected Physical Systems: A Security Blueprint for Smart Homes and Industrial IoT

Vignesh Alagappan

doi:10.63282/3050-9246.IJETCSIT-V6I4P124

Authors

Vignesh Alagappan Sr. Manager, Ecosystem Engineering, Rheem Manufacturing, Roswell, GA, USA. Author

DOI:

https://doi.org/10.63282/3050-9246.IJETCSIT-V6I4P124

Keywords:

Zero-Trust, Connected Physical Systems, Iot Security, PKI, Mtls, Device Identity, BLE Commissioning, Thread, Matter, Runtime Attestation, Secure OTA, Supply Chain Security, Connected Water Heaters, HVAC, Smart Homes

Abstract

The rapid expansion of connected physical systems (CPS) from smart homes and connected water heaters to industrial HVAC ecosystems has intensified the need for security frameworks that operate under the assumption that no entity is inherently trustworthy. Traditional perimeter models fail in distributed IoT topologies characterized by heterogeneous devices, multi-protocol radios, global supply chains, and cloud-driven control surfaces. This paper proposes a Zero-Trust Security Blueprint for connected Physical Systems, integrating identity-first device authentication, robust PKI and mTLS frameworks, secure boot and runtime attestation, BLE/Wi-Fi/Thread/Matter-based commissioning, and end-to-end software supply chain integrity. The blueprint outlines architectural principles, implementation pathways, and governance models required to operationalize Zero-Trust across smart homes and industrial IoT ecosystems

Downloads

Download data is not yet available.

References

[1] S. Rose, O. Borchert, S. Mitchell, and S. Connelly, "Zero Trust Architecture," National Institute of Standards and Technology, NIST SP 800-207, Aug. 2020.

[2] Connectivity Standards Alliance, "Matter 1.4 Specification," CSA, 2024.

[3] M. Fagan, K. N. Megas, K. Scarfone, and M. Smith, "Foundational Cybersecurity Activities for IoT Device Manufacturers," National Institute of Standards and Technology, NISTIR 8259, May 2020.

[4] Arm Limited, "PSA Certified: Security Model," ARM, 2021. [Online]. Available: https://www.psacertified.org/

[5] European Telecommunications Standards Institute, "Cyber Security for Consumer Internet of Things: Baseline Requirements," ETSI EN 303 645 V2.1.1, Jun. 2020.

[6] Google Cloud, "IoT platform product architecture on Google Cloud" Available: https://docs.cloud.google.com/architecture/connected-devices/iot-platform-product-architecture

[7] Amazon Web Services, "AWS IoT Security Best Practices," AWS Documentation, 2024. [Online]. Available: https://docs.aws.amazon.com/iot/

[8] Thread Group, "Thread 1.3.0 Specification," Thread Group, 2022.

[9] Bluetooth SIG, "Bluetooth Core Specification v5.4," Bluetooth SIG, 2023.

[10] International Electrotechnical Commission, "IEC 62443: Security for Industrial Automation and Control Systems," IEC, 2018.

Zero-Trust in Connected Physical Systems: A Security Blueprint for Smart Homes and Industrial IoT

Authors

DOI:

Keywords:

Abstract

Downloads

References

Downloads

Published

Issue

Section

How to Cite

Similar Articles

callforpaper

Submission

Menu

Latest publications

Information

Reach US

Ethics and Policies

Important Links

Downloads & Indexing

Similar Articles

How Blockchain and IoT Can Come Together and Help a Company to Grow

Enhanced Retail Experience Powered by Private Wireless: Architectures, Applications, and Performance Analysis

Zero Trust in Healthcare: Building a Secure Future with DevOps

Cyber Insurance Evolution: Addressing Ransomware and Supply Chain Risks

Secure Software Supply Chains in Open-Source Ecosystems

Strengthening ERP Security with AI-Driven Threat Detection and Zero-Trust Principles

A Multi-Layered AI-IoT Framework for Adaptive Financial Services

Enhancing Cloud Security through Block chain Technology A Comprehensive Analysis

AI-Driven Real-Time Compliance Management in IoT-Enabled Retail Operations

Vulnerability Management in the Age of IoT: Adapting ISO 27001 for Connected Devices in Healthcare