Protecting Home Networks From Insecure IoT Devices

We present our ongoing work on SPIN, a muchneeded open source measurement platform that enables researchers and other users to easily analyze the security features of devices in the "Internet of Things" (IoT), specifically in-home networks. SPIN accomplishes this by mapping and enhancing network-level measurements in the home network and by making them available through a well-defined interface. This enables all kinds of new applications for research and commercial purposes, such as privacy managers for consumers that visualize insecure IoT devices and their connections, and new algorithms that automatically block botnet traffic to protect the public Internet against IoT-powered DDoS attacks. SPIN is a flexible distributed system that runs in the home network and that keeps users in control. We have validated SPIN in our lab through prototype implementations.

[1]  Roksana Boreli,et al.  Network-level security and privacy control for smart-home IoT devices , 2015, 2015 IEEE 11th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob).

[2]  Nick Feamster,et al.  IoT Inspector: Crowdsourcing Labeled Network Traffic from Smart Home Devices at Scale , 2019, ArXiv.

[3]  Dan Boneh,et al.  Protecting browsers from dns rebinding attacks , 2007, CCS '07.

[4]  Nick Feamster,et al.  Closing the Blinds: Four Strategies for Protecting Smart Home Privacy from Network Observers , 2017, ArXiv.

[5]  Tadayoshi Kohno,et al.  Securing vulnerable home IoT devices with an in-hub security manager , 2017, 2017 IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom Workshops).

[6]  Farnam Jahanian,et al.  A Survey of Botnet Technology and Defenses , 2009, 2009 Cybersecurity Applications & Technology Conference for Homeland Security.

[7]  Collin Jackson,et al.  Robust defenses for cross-site request forgery , 2008, CCS.

[8]  Richard Clayton,et al.  Standardisation and Certification of the ‘Internet of Things’ , 2019 .

[9]  Aiko Pras,et al.  DNSSEC and its potential for DDoS attacks: a comprehensive measurement study , 2014, Internet Measurement Conference.

[10]  Tsutomu Matsumoto,et al.  IoTPOT: Analysing the Rise of IoT Compromises , 2015, WOOT.

[11]  Elisa Bertino,et al.  Heimdall: Mitigating the Internet of Insecure Things , 2017, IEEE Internet of Things Journal.

[12]  G. Demiris,et al.  Technologies for an Aging Society: A Systematic Review of “Smart Home” Applications , 2008, Yearbook of Medical Informatics.

[13]  Andreas Jacobsson,et al.  On Privacy and Security Challenges in Smart Connected Homes , 2016, 2016 European Intelligence and Security Informatics Conference (EISIC).