RemedioT: Remedial Actions for Internet-of-Things Conflicts

The increasing complexity and ubiquity of using IoT devices exacerbate the existing programming challenges in smart environments such as smart homes, smart buildings, and smart cities. Recent works have focused on detecting conflicts for the safety and utility of IoT applications, but they usually do not emphasize any means for conflict resolution other than just reporting the conflict to the application user and blocking the conflicting behavior. We propose RemedIoT, a remedial action 1 framework for resolving Internet-of-Things conflicts. The RemedIoT framework uses state of the art techniques to detect if a conflict exists in a given set of distributed IoT applications with respect to a set of policies, i.e., rules that define the allowable and restricted state-space transitions of devices. For each identified conflict, RemedIoT will suggest a set of remedial actions to the user by leveraging RemedIoT's programming abstractions. These programming abstractions enable different realizations of an IoT module while safely providing the same level of utility, e.g., if an air-conditioner application that is used to implement a cooling module conflicts with a CO2 monitor application that requires ventilation at home, a non-conflicting smart fan application will be suggested to the user. We evaluate RemedIoT on Samsung SmartThings applications and IFTTT applets and show that for 102 detected conflicts across 74 sample applications with 11 policies, RemedIoT is able to remediate ~ 80% of the conflicts found in the environment, which would normally be blocked by prior solutions. We further demonstrate the efficacy and scalability of our approach for smart city environments.

[1]  Lujo Bauer,et al.  Some Recipes Can Do More Than Spoil Your Appetite: Analyzing the Security and Privacy Risks of IFTTT Recipes , 2017, WWW.

[2]  Xinyu Yang,et al.  A Survey on Internet of Things: Architecture, Enabling Technologies, Security and Privacy, and Applications , 2017, IEEE Internet of Things Journal.

[3]  Mani B. Srivastava,et al.  SensorAct: a privacy and security aware federated middleware for building management , 2012, BuildSys '12.

[4]  Ahmad-Reza Sadeghi,et al.  IoT SENTINEL: Automated Device-Type Identification for Security Enforcement in IoT , 2016, 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS).

[5]  Mani B. Srivastava,et al.  DDFlow: visualized declarative programming for heterogeneous IoT networks , 2019, IoTDI.

[6]  Ratul Mahajan,et al.  Beam: Ending Monolithic Applications for Connected Devices , 2016, USENIX Annual Technical Conference.

[7]  Zhao Li,et al.  SIFT: building an internet of safe things , 2015, IPSN.

[8]  Hongxin Hu,et al.  On the Safety of IoT Device Physical Interaction Control , 2018, CCS.

[9]  Balakrishnan Narayanaswamy,et al.  Zodiac: Organizing Large Deployment of Sensors to Create Reusable Applications for Buildings , 2015, BuildSys@SenSys.

[10]  Patrick D. McDaniel,et al.  Soteria: Automated IoT Safety and Security Analysis , 2018, USENIX Annual Technical Conference.

[11]  Proyash Podder,et al.  Expat: Expectation-based Policy Analysis and Enforcement for Appified Smart-Home Platforms , 2019, SACMAT.

[12]  Donatella Sciuto,et al.  BuildingRules: a trigger-action based system to manage complex commercial buildings , 2015, UbiComp/ISWC Adjunct.

[13]  Stefan Saroiu,et al.  The home needs an operating system (and an app store) , 2010, Hotnets-IX.

[14]  Lu Feng,et al.  CityResolver: A Decision Support System for Conflict Resolution in Smart Cities , 2018, 2018 ACM/IEEE 9th International Conference on Cyber-Physical Systems (ICCPS).

[15]  John A. Stankovic,et al.  Detection of Runtime Conflicts among Services in Smart Cities , 2016, 2016 IEEE International Conference on Smart Computing (SMARTCOMP).

[16]  Patrick D. McDaniel,et al.  IoTGuard: Dynamic Enforcement of Security and Safety Policy in Commodity IoT , 2019, NDSS.

[17]  Stefan Saroiu,et al.  An Operating System for the Home , 2012, NSDI.

[18]  Marco D. Santambrogio,et al.  Danger-system: Exploring new ways to manage occupants safety in smart building , 2015, 2015 IEEE 2nd World Forum on Internet of Things (WF-IoT).

[19]  David E. Culler,et al.  Towards Automatic Spatial Verification of Sensor Placement in Buildings , 2013, BuildSys@SenSys.

[20]  John A. Stankovic,et al.  CityGuard: A Watchdog for Safety-Aware Conflict Detection in Smart Cities , 2017, 2017 IEEE/ACM Second International Conference on Internet-of-Things Design and Implementation (IoTDI).

[21]  Patrick D. McDaniel,et al.  Program Analysis of Commodity IoT Applications for Security and Privacy , 2018, ACM Comput. Surv..

[22]  Atul Prakash,et al.  FlowFence: Practical Data Protection for Emerging IoT Application Frameworks , 2016, USENIX Security Symposium.

[23]  Zhao Li,et al.  Systematically Debugging IoT Control System Correctness for Building Automation , 2016, BuildSys@SenSys.

[24]  John A. Stankovic,et al.  Research Directions for the Internet of Things , 2014, IEEE Internet of Things Journal.

[25]  Ehab Al-Shaer,et al.  IoTSAT: A formal framework for security analysis of the internet of things (IoT) , 2016, 2016 IEEE Conference on Communications and Network Security (CNS).