Haunted House: Physical Smart Home Event Verification in the Presence of Compromised Sensors-Reference-Cited by-同舟云学术

Haunted House: Physical Smart Home Event Verification in the Presence of Compromised Sensors

Published:2022-04-11 Issue:3 Volume:3 Page:1-28
ISSN:2691-1914
Container-title:ACM Transactions on Internet of Things
language:en
Short-container-title:ACM Trans. Internet Things

Author:

Birnbach Simon¹^ORCID,Eberz Simon¹,Martinovic Ivan¹

Affiliation:

1. University of Oxford, Oxford, United Kingdom

Abstract

In this article, we verify physical events using data from an ensemble of smart home sensors. This approach both protects against event sensor faults and sophisticated attackers. To validate our system’s performance, we set up a “smart home” in an office environment. We recognize 22 event types using 48 sensors over the course of two weeks. Using data from the physical sensors, we verify the event stream supplied by the event sensors to detect both masking and spoofing attacks. We consider three threat models: a zero-effort attacker, an opportunistic attacker, and a sensor-compromise attacker who can arbitrarily modify live sensor data. For spoofed events, we achieve perfect classification for 9 out of 22 events and achieve a 0% false alarm rate at a detection rate exceeding 99.9% for 15 events. For 11 events the majority of masking attacks can be detected without causing any false alarms. We also show that even a strong opportunistic attacker is inherently limited to spoofing few select events and that doing so involves lengthy waiting periods. Finally, we demonstrate the vulnerability of a single-classifier system to compromised sensor data and introduce a more secure approach based on sensor fusion.

Funder

Mastercard and the Engineering and Physical Sciences Research Council

Publisher

Association for Computing Machinery (ACM)

Subject

Software,Information Systems,Hardware and Architecture,Computer Science Applications,Computer Networks and Communications

Link

https://dl.acm.org/doi/pdf/10.1145/3506859

Reference56 articles.

1. Peek-a-boo

2. Noah Apthorpe Dillon Reisman Srikanth Sundaresan Arvind Narayanan and Nick Feamster. 2017. Spying on the smart home: Privacy attacks and defenses on encrypted IoT traffic. Retrieved from http://arxiv.org/abs/1708.05044.

3. Home Assistant. 2021. Awaken your Home. Retrieved from https://www.home-assistant.io/.

4. Behavioral Fingerprinting of IoT Devices

5. Simon Birnbach, Richard Baker, and Ivan Martinovic. 2017. Wi-Fly?: Detecting privacy invasion attacks by consumer drones. In Proceedings of the 24th Annual Network and Distributed System Security Symposium (NDSS). The Internet Society. Retrieved from https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/wi-fly-detecting-privacy-invasion-attacks-consumer-drones/.

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Securing Sensing in Supply Chains: Opportunities, Building Blocks, and Designs;IEEE Access;2024

2. MP-Mediator: Detecting and Handling the New Stealthy Delay Attacks on IoT Events and Commands;Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses;2023-10-16

3. A behavioural hierarchical analysis framework in a smart home: Integrating HMM and probabilistic model checking;Information Fusion;2023-07

4. Reliability Analysis of Smart Home Sensor Systems Based on Probabilistic Model Checking;Proceedings of the International Conference on Ubiquitous Computing & Ambient Intelligence (UCAmI 2022);2022-11-21