Abstract
A key feature of the emerging smart home is the integration of heterogeneous technologies, including multiple standards, protocols, and platforms. However, the integration may introduce critical security vulnerabilities, due to the customizations, unsatisfied assumptions and incompatibilities of the technologies. Hence, it is necessary to address the security problems in smart home systems from an integration perspective, as a complement to existing studies that focus on the analysis of individual system components or technologies. As part of an ongoing Ph.D. research project, this paper presents the author’s current work which is a framework for security analysis of implementation of smart home integrations, and future work which is a standalone tool automating the framework and applying it on smart home systems for elderly healthcare and wellbeing. Applying on three real-world smart home systems, the proposed framework identifies twelve security vulnerabilities.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Forecast market size of the global smart home market from 2016 to 2022. https://www.statista.com/statistics/682204/global-smart-home-market-size/
Deloitte: Switch on to the connected home: the Deloitte consumer review. https://www2.deloitte.com/content/dam/Deloitte/uk/Documents/consumer-business/deloitte-uk-consumer-review-16.pdf
Fawaz, K., Kim, K.H., Shin, K.G.: Protecting privacy of BLE device users. In: USENIX Security, pp. 1205–1221 (2016)
Fernandes, E., Paupore, J., Rahmati, A., Simionato, D., Conti, M., Prakash, A.: Flowfence: practical data protection for emerging IoT application frameworks. In: USENIX Security, pp. 531–548 (2016)
Fernandes, E., Rahmati, A., Jung, J., Prakash, A.: Security implications of permission models in smart-home application frameworks. IEEE S&P 15, 24–30 (2017)
Jia, Y.J., Chen, Q.A.W.S., Rahmati, A., Fernandes, E., Mao, Z.M., Prakash, A.: ContexIoT: towards providing contextual integrity to appified IoT platforms. In: NDSS (2017)
Majumder, S.: Smart homes for elderly healthcare recent advances and research challenges. Sensors 7(11), 2496 (2017)
Michalevsky, Y., Nath, S., Liu, J.: MASHaBLE: mobile applications of secret handshakes over bluetooth LE. In: MobiCom, pp. 387–400 (2016)
Ronen, E., Shamir, A., Weingarten, A.O., O’Flynn, C.: IoT goes nuclear: creating a ZigBee chain reaction. In: IEEE S&P, pp. 195–212 (2017)
Simpson, A.K., Roesner, F., Kohno, T.: Securing vulnerable home IoT devices with an in-hub security manager. In: IEEE PerCom Workshop, pp. 551–556 (2017)
Sun, J., Liu, Y., Dong, J.S., Pang, J.: PAT: towards flexible verification under fairness. In: Bouajjani, A., Maler, O. (eds.) CAV 2009. LNCS, vol. 5643, pp. 709–714. Springer, Heidelberg (2009). https://doi.org/10.1007/978-3-642-02658-4_59
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Nature Switzerland AG
About this paper
Cite this paper
Mahadewa, K. (2018). Security Analysis of Smart Home Implementations. In: Sun, J., Sun, M. (eds) Formal Methods and Software Engineering. ICFEM 2018. Lecture Notes in Computer Science(), vol 11232. Springer, Cham. https://doi.org/10.1007/978-3-030-02450-5_33
Download citation
DOI: https://doi.org/10.1007/978-3-030-02450-5_33
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-02449-9
Online ISBN: 978-3-030-02450-5
eBook Packages: Computer ScienceComputer Science (R0)