The main topic of research of ESR3 is “metrics for cybersecurity”. This work will deal in particular with trust metrics for the Internet of Things. The vision of the Internet of Things (IoT) is founded on the following premise: it is possible to create a world-wide network of interconnected objects, or things, which will probably be readable, recognizable, locatable, addressable, and/or controllable via the Internet. Billions of devices are foreseen to be connected by 2020, so trust issues will grow exponentially. Trust is necessary in a system such as IoT because the entities involved should know the other entities they have to interact with. The problem of finding a suitable way to establish trust becomes more complicated in IoT due to its heterogeneity. Trust management systems have been used during the decision-making process in order to assist entities that have to interact with others in a system. How to measure trust then becomes a key issue for IoT systems as all the heterogeneous entities will use their own trust management systems and this is challenging.
The Internet of Things (IoT) is an environment of interconnected entities, which are identifiable, usable and controllable via the Internet. Trust is useful for a system such as the IoT as the entities involved would like to know how the other entities they have to interact with are going to perform.
When developing an IoT entity, it will be desirable to guarantee trust during its whole life cycle. Trust domain is strongly dependent on other domains such as security and privacy.
To consider these domains as a whole and to elicit the right requirements since the first phases of the System Development Life Cycle (SDLC) is a key point when developing an IoT entity.
We emphasize on the importance of the concept of traceability. This property permits to connect all the elicited requirements guaranteeing more control on the whole requirements engineering process.