Haunted House: Physical Smart Home Event Verification in the Presence of Compromised Sensors-Reference-Cited by-同舟云学术

Haunted House: Physical Smart Home Event Verification in the Presence of Compromised Sensors

Published:2022-04-11 Issue:3 Volume:3 Page:1-28
ISSN:2691-1914
Container-title:ACM Transactions on Internet of Things
language:en
Short-container-title:ACM Trans. Internet Things

Author:

Birnbach Simon¹^ORCID,Eberz Simon¹,Martinovic Ivan¹

Affiliation:

1. University of Oxford, Oxford, United Kingdom

Abstract

In this article, we verify physical events using data from an ensemble of smart home sensors. This approach both protects against event sensor faults and sophisticated attackers. To validate our system’s performance, we set up a “smart home” in an office environment. We recognize 22 event types using 48 sensors over the course of two weeks. Using data from the physical sensors, we verify the event stream supplied by the event sensors to detect both masking and spoofing attacks. We consider three threat models: a zero-effort attacker, an opportunistic attacker, and a sensor-compromise attacker who can arbitrarily modify live sensor data. For spoofed events, we achieve perfect classification for 9 out of 22 events and achieve a 0% false alarm rate at a detection rate exceeding 99.9% for 15 events. For 11 events the majority of masking attacks can be detected without causing any false alarms. We also show that even a strong opportunistic attacker is inherently limited to spoofing few select events and that doing so involves lengthy waiting periods. Finally, we demonstrate the vulnerability of a single-classifier system to compromised sensor data and introduce a more secure approach based on sensor fusion.

Funder

Mastercard and the Engineering and Physical Sciences Research Council

Publisher

Association for Computing Machinery (ACM)

Subject

Software,Information Systems,Hardware and Architecture,Computer Science Applications,Computer Networks and Communications

Link

https://dl.acm.org/doi/pdf/10.1145/3506859

Reference56 articles.

1. Peek-a-boo

2. Noah Apthorpe Dillon Reisman Srikanth Sundaresan Arvind Narayanan and Nick Feamster. 2017. Spying on the smart home: Privacy attacks and defenses on encrypted IoT traffic. Retrieved from http://arxiv.org/abs/1708.05044.

3. Home Assistant. 2021. Awaken your Home. Retrieved from https://www.home-assistant.io/.

4. Behavioral Fingerprinting of IoT Devices

5. Simon Birnbach, Richard Baker, and Ivan Martinovic. 2017. Wi-Fly?: Detecting privacy invasion attacks by consumer drones. In Proceedings of the 24th Annual Network and Distributed System Security Symposium (NDSS). The Internet Society. Retrieved from https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/wi-fly-detecting-privacy-invasion-attacks-consumer-drones/.

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. TrustEvent: Cross-Platform IoT Trigger Event Verification Using Edge Computing;ICC 2024 - IEEE International Conference on Communications;2024-06-09

2. On Continuously Verifying Device-level Functional Integrity by Monitoring Correlated Smart Home Devices;Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks;2024-05-27

3. HySense: Hybrid Event Occurrence Detection Method for IoT Devices;ICASSP 2024 - 2024 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP);2024-04-14

4. Multi-scale Convolutional Feature Fusion Network Based on Attention Mechanism for IoT Traffic Classification;International Journal of Computational Intelligence Systems;2024-02-19

5. Securing Sensing in Supply Chains: Opportunities, Building Blocks, and Designs;IEEE Access;2024