%0 Conference Proceedings
%T Proactively Extracting IoT Device Capabilities: An Application to Smart Homes
%+ Department of Computer Science [Colorado State University]
%+ University at Albany [SUNY]
%A Dolan, Andy
%A Ray, Indrakshi
%A Majumdar, Suryadipta
%Z Part 1: Network and Cyber-Physical Systems Security
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 34th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec)
%C Regensburg, Germany
%Y Anoop Singhal
%Y Jaideep Vaidya
%I Springer International Publishing
%3 Data and Applications Security and Privacy XXXIV
%V LNCS-12122
%P 42-63
%8 2020-06-25
%D 2020
%R 10.1007/978-3-030-49669-2_3
%Z Computer Science [cs]Conference papers
%X Internet of Things (IoT) device adoption is on the rise. Such devices are mostly self-operated and require minimum user interventions. This is achieved by abstracting away their design complexities and functionalities from the users. However, this abstraction significantly limits a user’s insights on evaluating the true capabilities (i.e., what actions a device can perform) of a device and hence, its potential security and privacy threats. Most existing works evaluate the security of those devices by analyzing the environment data (e.g., network traffic, sensor data, etc.). However, such approaches entail collecting data from encrypted traffic, relying on the quality of the collected data for their accuracy, and facing difficulties in preserving both utility and privacy of the data. We overcome the above-mentioned challenges and propose a proactive approach to extract IoT device capabilities from their informational specifications to verify their potential threats, even before a device is installed. We apply our approach to the context of a smart home and evaluate its accuracy and efficiency on the devices from three different vendors.
%G English
%Z TC 11
%Z WG 11.3
%2 https://inria.hal.science/hal-03243641/document
%2 https://inria.hal.science/hal-03243641/file/496047_1_En_3_Chapter.pdf
%L hal-03243641
%U https://inria.hal.science/hal-03243641
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ IFIP-WG11-3
%~ IFIP-DBSEC
%~ IFIP-LNCS-12122