implementations of smart home
play

Implementations of Smart Home Integrations ICECCS18, 12 December - PowerPoint PPT Presentation

Mar 30, 2024 •382 likes •702 views

HomeScan: Scrutinizing Implementations of Smart Home Integrations ICECCS18, 12 December 2018 Kulani Mahadewa, Kailong Wang, Guangdong Bai, Ling Shi, Jin Song Dong and Zhenkai Liang 1 Background IoT-enhanced smart home is getting popular

  1. HomeScan: Scrutinizing Implementations of Smart Home Integrations ICECCS’18, 12 December 2018 Kulani Mahadewa, Kailong Wang, Guangdong Bai, Ling Shi, Jin Song Dong and Zhenkai Liang 1

  2. Background IoT-enhanced smart home is getting popular 1 https://www.statista.com/study/42112/smart-home-report/ 2 https://www.juniperresearch.com/press/press-releases/smart-home-revenues-to-reach-$100-billion-by-2020 2

  3. Smart Home Vulnerable to Attacks ! “The biggest DDoS attack in history “KRACK, the attack on WPA2 protocol could powered by 150,000 hacked IoT cripple smart home Wi- Fi.” 2 devices.” 1 Network Network Attacker Attacker Handshake Victim Control Home Wi-Fi Point Victim Server 2017 2016 (e.g., Twitter, GitHub) IoT Devices 1 http://www.bbc.com/news/technology-37738823 3 2 http://www.bbc.com/news/av/technology-41641814/krack-wi-fi-security-flaw-explained

  4. Existing Work on Smart Home Security Application Frameworks Security Hardening in System Flaw Identification Design and Implementation Authorization model of IFTTT , Securing data from malicious apps on Platforms Permission model of frameworks (e.g. IoT Protocols control points, Secure platforms SmartThings) ZigBee, Z-Wave, BLE, Customized Securing home Wi-Fi from malicious Security in Protocols protocols on IEEE 802.15.4 control points Integration ?? Smart Devices Smart Secure smart devices from malware, Smart locks, smart lights, smart secure BLE IoTs presence meters, thermostats, wearables Devices 4

  5. Security of Smart Home Integration ▪ Causes of insecurity when integrating a smart home system. 1) Incompatibilities 2) Invalidated assumptions 5

  6. Incompatibilities in Integration (1) Wide assortments of technologies and devices manufactured by diverse vendors. Smart Devices Bulb Control Point Hubs Hub Bulb 6

  7. Incompatibilities in Integration (2) E.g. Smart bulb cannot verify the identity of the control point. Control Point Malicious App on Unauthorize control Control Point Bulb Hub Authentication: ZigBee touch-link Authentication: Customized 7

  8. Invalidated Assumptions Manufactures make assumptions to reduce complexity and cost in building smart home systems. ➢ Home Wi-Fi is secure. ➢ Implicit trust on other components in the integrated system. Benign bulb Benign hub Benign control app Unauthorize control 8 Malicious hub

  9. Our Solution: HomeScan Extract the abstract specification of application-layer protocols and security-relevant internal behaviours from the implementation, and analysing security of the specification. Challenges: Partial availability of the implementations. • Unavailability of source code, and only executables/libraries provided by the vendors available. Communication is not clear due to use of cryptographic protocols. • 9

  10. Running Example – Chromecast HTTPS Have source code No source code Control Point (CP) YouTube Server (YS) Communicate Communicate over SSL over TLS Chromecast Receiver (CR) plugged into TV’s HDMI port No source code 10

  11. Our Approach Pre-processing Initial Knowledge Input Implementation Test Cases 11

  12. Pre-processing Extract values Capture Traces Transactions E.g. msg HTTPS YouTube Server (YS) Control Point (CP) message on trace POST https://www.youtube.com/api/lounge/pairing/get_lounge_token_batch HTTP/1.1 Host: www.youtube.com Chrome/63.0.3239.132 Safari/537.36 screen_ids=fsti0e72vuamj9p8b26h5j08ug Transaction = ( sender: CP , receiver: YS, channel: Wi- Fi, Message: {“ fsti0e72vuamj9p8b26h5j08ug ”} 12

  13. Our Approach Pre-processing Initial Knowledge Input Implementation Test Cases Transactions Specification Extraction 13

  14. Specification Extraction Transactions Whitebox Analysis Trace Analysis 14

  15. Specification Extraction Program Whitebox Analysis Trace Analysis Transactions msg* E.g. msg Chromecast Receiver Program of CP over SSL No source code HTTPS msg = Receive(msg*) YouTube Control Point Server (YS) (CP) Have source code No source code send(msg) Transaction = ( HTTPS sender: CP , receiver: YS, channel: Wi-Fi, Message: {“ fsti0e72vuamj9p8b26h5j08ug ”} msg 15 YouTube Server (YS)

  16. Specification Extraction Whitebox Analysis Trace Analysis Transactions 1. Known msg* msg 1 2 Configuration - (1) over SSL HTTPS YouTube Server (YS) Chromecast Receiver (CR) Control Point (CP) Trace 1 Before reset of CR Trace 2 After reset of CR Analyse the difference in the values in msg before and after the reset of CR. Semantics of the msg = CR’s session identity 16

  17. Specification Extraction Whitebox Analysis Trace Analysis Transactions s 1. Known 2 1 Configuration - (2) Encrypted HTTP Philips Hue Bulb Hub Control Point (CP) Trace 1 Before replace of Hub Trace 2 After replace of Hub Analyse the difference in “s” before and after the reset of CR. Semantics of the String “s” = Hub specific value 17

  18. Specification Extraction Whitebox Analysis Trace Analysis Transactions Packet Turn On 1 2. Control 2 E.g.2 Command Encrypted HTTP Philips Hue Bulb Hub Control Point (CP) Packet Data(37) Data(37) Turn On command over Zigbee 18 Heartbeat With Turn On cmd Remove Heartbeat

  19. Specification: LTS Representation Chromecast Receiver (CR) CR CP YS Control Point (CP) YouTube Server (YS) 19

  20. Our Approach Pre-processing Initial Knowledge Input Implementation Test Cases Transactions Specification Extraction LTS Representation Flaw Identification Output Vulnerabilities 20

  21. Flaw Identification LTS Extracted Security Representa- Participants Attack Properties tion e.g. CP||YS||CR 21

  22. Attack Models and Security Properties Network Attacker Malicious Participant • Eavesdropping Collect information illegally • Intercept and modify • • Send unauthorized commands Security Properties Data Level Association Level Access Level Confidentiality Integrity A Authentication Authorization 22

  23. Approach LTS Extracted Security Representa- Participants Attack Properties tion e.g. CP||YS||CR Execution Rules Model 23

  24. Generate the System Model Extracted Participants Attack CR Malicious CP CP YS System Model Init K = {} 24 … …

  25. Approach LTS Extracted Security Representati Participants Attack Properties on e.g. CP||YS||CR Execution Rules Model Verification Output Algorithm Vulnerabilities 25

  26. Flaw Identification Extracted Participants Attack CR Malicious CP CP Mis-response to discovery request YS Attack Trace bad state: The attacker sent a casting video request to 26 the YS.

  27. Evaluation: Vulnerabilities Chromecast Philips Hue LIFX Mis-response to discovery request: Misuse of ZigBee Light Link Unprotected Wi-Fi hotspot on the Vulnerability Mis-response Flawed Lack of Use of Insecure Unprotected Lack of User or Vulnerable to Total allows a malicious control point to protocol: allows a malicious hub to bulb: allows a malicious bulb with a to Discovery Authentication Authentication Underlying SD’s Wi -Fi Device Network Traffic obtain the identity of the TV screen and Request Protocol hijack the bulb. Protocols Hotspot fake hotspot to steal the password Authentication Replay casting a video to the TV . of the victim’s home Wi-Fi. Philips Hue 2 1 1 1 0 0 0 5 Lack of device or user authentication: Lack of control to administration LIFX 0 0 0 0 2 1 1 4 allows a malicious control point to commands: results in uncontrolled Chromecast 1 0 0 0 1 1 0 3 obtain the identity of a private YouTube authentication. Total video of the victim. 3 1 1 1 3 2 1 12 Benign System Benign System Send home Wi-Fi Discover and connect Participants credentials with malicious bulb bulb bulb hub control app control app Hijack the connection Initialize ZLL protocol 27 Malicious bulb Malicious hub

  28. Conclusion and Future Work Conclusion • Propose hybrid techniques to extract the specification of the smart home integration. • Analyse the security of the extracted specification using formal verification techniques. • Applied the approach for three existing smart home systems. • Found twelve vulnerabilities in them. Future Work • Plan to propose new attack models to find vulnerabilities in similar IoT systems. 28

  29. Thank You Questions? 29

  30. Reference 1. Turning Internet of Things(IoT) into Internet of Vulnerabilities (IoV) : IoT Botnets. https://arxiv.org/abs/1702.03681. 2. M. Vanhoef and F . Piessens. Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2. In CCS, 2017. 3. N.Apthorpe, D.Reisman, S.Sundaresan, A.Narayanan, and N.Feamster, 2017. Spying on the Smart Home: Privacy Attacks and Defenses on Encrypted IoT Traffic. arXiv preprint arXiv:1708.05044 . 4. https://hometheaterreview.com/attack-of-the-smart-home-devices/ 5. S. Majumder, E. Aghayi, M. Noferesti, H. Memarzadeh-Tehran, T . Mondal, Z. Pang, & M. J. Deen (2017). Smart Homes for Elderly Healthcare — Recent Advances and Research Challenges. Sensors , 17 (11), 2496. 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is a Loxone Smart Home? A Home That Takes Care Of Itself Life at home is like flying on

What is a Loxone Smart Home? A Home That Takes Care Of Itself Life at home is like flying on

What is a Loxone Smart Home? A Home That Takes Care Of Itself Life at home is like flying on autopilot! My Loxone Smart Home and I think alike. If I ever want to change something, a single press on a switch is enough. Simple To Use

95 views • 9 slides
Packet-Level Signatures for Smart Home Devices Rahmadi Trimananda, Janus Varmarken, Athina

Packet-Level Signatures for Smart Home Devices Rahmadi Trimananda, Janus Varmarken, Athina

Packet-Level Signatures for Smart Home Devices Rahmadi Trimananda, Janus Varmarken, Athina Markopoulou, and Brian Demsky Smart Home 2 Smart Home Smart Plugs 2 Smart Home Smart Plugs Light Bulbs 2 Smart Home Smart Plugs Light Bulbs

1.92k views • 146 slides
Smart Proactive Homes Live independently at home for longer ProActivated will turn your own

Smart Proactive Homes Live independently at home for longer ProActivated will turn your own

Smart Proactive Homes Live independently at home for longer ProActivated will turn your own home in a smart home. Combining new and innovative technology with our smart software allows your home to deliver support in your daily life.

428 views • 20 slides
Security Architecture for the Smart Home Jacob Fahrenkrug, CTO at yetu AG

Security Architecture for the Smart Home Jacob Fahrenkrug, CTO at yetu AG

Security Architecture for the Smart Home Jacob Fahrenkrug, CTO at yetu AG jacob.fahrenkrug@yetu.com http://yetu.com twitter: @yetuAG, @jacobfahrenkrug 2 Definition of Smart Home 3 Smart Home is not home automation! 4 5 6

243 views • 23 slides
A true game-changer of smart home market! Explore the most advanced gateway Home Center 3 is the

A true game-changer of smart home market! Explore the most advanced gateway Home Center 3 is the

A true game-changer of smart home market! Explore the most advanced gateway Home Center 3 is the worlds most advanced smart home gateway enabling intuitive home management. It is a result of our 10 years of experience and numerous comments

190 views • 17 slides
HOME CENTER 2 FIBARO SYSTEM Get to know FIBARO home FIBARO smart home is a complex ecosystem,

HOME CENTER 2 FIBARO SYSTEM Get to know FIBARO home FIBARO smart home is a complex ecosystem,

HOME CENTER 2 FIBARO SYSTEM Get to know FIBARO home FIBARO smart home is a complex ecosystem, but at the same time, its easy to install and manage. It can be customized and adjusted to the specifjc need of each room or space. Home

418 views • 17 slides
Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul

Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul

Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul Prakash IEEE Security and Privacy 24 May 2016 Smart Door Locks CO Sensors Connected Ovens Smart Plugs IP Cameras Emerging Smart Home Frameworks

502 views • 35 slides
ABOUT US Larnitech is a developer and manufacturer of Smart Home systems for home and

ABOUT US Larnitech is a developer and manufacturer of Smart Home systems for home and

ABOUT US Larnitech is a developer and manufacturer of Smart Home systems for home and office automation. The head office of the company is located in Cologne (Germany). Our new product line combines easy mounting and installation with a

557 views • 52 slides
Quantifying and Clustering User-Centric Considerations About Smart Home Device Adoption Nat M.

Quantifying and Clustering User-Centric Considerations About Smart Home Device Adoption Nat M.

Do Privacy and Security Matter to Everyone? Quantifying and Clustering User-Centric Considerations About Smart Home Device Adoption Nat M. Barbosa , Zhuohao Zhang, Yang Wang The Smart Home Adoption-Concern Conundrum

639 views • 10 slides
SMART HOME OVER IRC HAVING A CHAT WITH YOUR TOASTER 1 Motivation In this Lab you will

SMART HOME OVER IRC HAVING A CHAT WITH YOUR TOASTER 1 Motivation In this Lab you will

create your own exercise Joshua Koutny, Simon Anlauff | Team 204 SMART HOME OVER IRC HAVING A CHAT WITH YOUR TOASTER 1 Motivation In this Lab you will Create your own Smart Space Connect devices over a chat protocol Message

487 views • 15 slides
Is Anybody Home? Inferring Activity from Smart Home Network Traffic Bogdan Copos Matt Bishop

Is Anybody Home? Inferring Activity from Smart Home Network Traffic Bogdan Copos Matt Bishop

Is Anybody Home? Inferring Activity from Smart Home Network Traffic Bogdan Copos Matt Bishop Karl Levitt Jeff Rowe University of California, Davis 1 / 21 2 / 21 3 / 21 4 / 21 Security Many things can go wrong... malicious firmware

803 views • 36 slides
Surveillance & Home Automation for the Smart Home AllJoyn and Kalay Integration Yuping

Surveillance & Home Automation for the Smart Home AllJoyn and Kalay Integration Yuping

Surveillance & Home Automation for the Smart Home AllJoyn and Kalay Integration Yuping Tseng Chief Technology Officer ThroughTek Co., Ltd. 10/15/2015 AllSeen Alliance 1 Agenda 1. Introduction About ThroughTek 2. Kalay Platform &

258 views • 25 slides
Digital Ecosystems and Business Models: Smart Examples from the Smart Home Sector SPEAKER WHY

Digital Ecosystems and Business Models: Smart Examples from the Smart Home Sector SPEAKER WHY

Digital Ecosystems and Business Models: Smart Examples from the Smart Home Sector SPEAKER WHY SHOULD YOU CARE? Digital ecosystems are assuming dominating positions in Andrea Carugati every sector. Our research highlights the challenges of being

333 views • 10 slides
DIGITAL ECOSYSTEMS AND BUSINESS MODELS: SMART EXAMPLES FROM THE SMART HOME SECTOR ANDREA

DIGITAL ECOSYSTEMS AND BUSINESS MODELS: SMART EXAMPLES FROM THE SMART HOME SECTOR ANDREA

DIGITAL ECOSYSTEMS AND BUSINESS MODELS: SMART EXAMPLES FROM THE SMART HOME SECTOR ANDREA CARUGATI AARHUS BSS ANDREA CARUGATI ASSOCIATE-DEAN FOR DIGITALIZATION AGENDA Define Ecosystems Ecosystems drivers Examples from the smart

1.31k views • 13 slides
Home is Where Your Phone is: Usability Evaluation of Mobile Phone UI for a Smart Home Tiiu

Home is Where Your Phone is: Usability Evaluation of Mobile Phone UI for a Smart Home Tiiu

Home is Where Your Phone is: Usability Evaluation of Mobile Phone UI for a Smart Home Tiiu Koskela, Kaisa Vnnen-Vainio-Mattila & Lauri Lehti Tampere University of Technology Tiiu.Koort@nokia.com Kaisa.Vaananen-Vainio-Mattila@tut.fi

312 views • 5 slides
Enabling third-party apps in home gateways for and (through virtualization, edge

Enabling third-party apps in home gateways for and (through virtualization, edge

Enabling third-party apps in home gateways for and (through virtualization, edge computing, SDN, and RF management) Suman Banerjee (suman@cs.wisc.edu) 1 IoT and smart home apps IoT and smart home apps Should the cloud manage

852 views • 45 slides
Large-Scale Deep Learning for Intelligent Computer Systems Jeff Dean In collaboration with many

Large-Scale Deep Learning for Intelligent Computer Systems Jeff Dean In collaboration with many

Large-Scale Deep Learning for Intelligent Computer Systems Jeff Dean In collaboration with many other people at Google Web Search and Data Mining Web Search and Data Mining Really hard without understanding Not there yet, but making

1.13k views • 97 slides
GOAL SETTING AND ACTION PLANNING Leadership on Demand AGENDA Overview of goals SMART

GOAL SETTING AND ACTION PLANNING Leadership on Demand AGENDA Overview of goals SMART

GOAL SETTING AND ACTION PLANNING Leadership on Demand AGENDA Overview of goals SMART goals Your SMART goals Creating an action plan DEFINITION OF GOAL An observable and measurable end result having one or more

514 views • 14 slides
Colorado Smart Cities Alliance Tyler Svitak, Executive Director @COSmartCities

Colorado Smart Cities Alliance Tyler Svitak, Executive Director @COSmartCities

Colorado Smart Cities Alliance Tyler Svitak, Executive Director @COSmartCities www.coloradosmart.city AGENDA How are Smart Cities progressing in Colorado and how is the Alliance helping? 1. Smart Cities Overview 2. The Alliance - What we do,

858 views • 22 slides
Securing Smart Homes Using NDN Lei Pi, Lan Wang Motivation IoT technology has great

Securing Smart Homes Using NDN Lei Pi, Lan Wang Motivation IoT technology has great

Securing Smart Homes Using NDN Lei Pi, Lan Wang Motivation IoT technology has great potential in a wide range of fields Numbers of IoT devices is increasing at high speed Security issues is emerging and posing a challenging

413 views • 5 slides
Smart Writing for Business Websites Tom Tortorici Slides/Ebook TomTortorici.com/WCATL Twitter

Smart Writing for Business Websites Tom Tortorici Slides/Ebook TomTortorici.com/WCATL Twitter

Smart Writing for Business Websites Tom Tortorici Slides/Ebook TomTortorici.com/WCATL Twitter @tom_tortorici S M A R T W R I T I N G F O R B U S I N E S S W E B S I T E S The Strategy Little Wizard TOYS GAMES SYSTEMS ORDERING

585 views • 47 slides
Brian Jackson, MD, MS Assoc Prof of Pathology (Clinical), University of Utah Medical Director,

Brian Jackson, MD, MS Assoc Prof of Pathology (Clinical), University of Utah Medical Director,

How to make smart insourcing and outsourcing decisions for hospital laboratory services Brian Jackson, MD, MS Assoc Prof of Pathology (Clinical), University of Utah Medical Director, Support Svcs & IT, ARUP Laboratories Goal of

368 views • 34 slides
SECURITY ANALYSIS OF EMERGING SMART HOME APPLICATIONS Earlence Fernandes, Jaeyeon jung, Atul

SECURITY ANALYSIS OF EMERGING SMART HOME APPLICATIONS Earlence Fernandes, Jaeyeon jung, Atul

SECURITY ANALYSIS OF EMERGING SMART HOME APPLICATIONS Earlence Fernandes, Jaeyeon jung, Atul Prakash Presented by Surya Mani Content Motivation Related Work SmartThings-Big Picture Security Analysis Proof-of-concept attacks

858 views • 30 slides
RESOLUTION FOR SMART DEVICES USING ACOUSTIC CHANNEL BY MOSTAFA UDDIN AND DR TAMER NADEEM WI-FI

RESOLUTION FOR SMART DEVICES USING ACOUSTIC CHANNEL BY MOSTAFA UDDIN AND DR TAMER NADEEM WI-FI

HARMONY: CONTENT RESOLUTION FOR SMART DEVICES USING ACOUSTIC CHANNEL BY MOSTAFA UDDIN AND DR TAMER NADEEM WI-FI NETWORKS 74% of smartphones data goes through Wi-Fi Low/free cost and high throughput Enhancing Wi-Fi network performance

300 views • 17 slides

More recommend