Loading [a11y]/accessibility-menu.js
DEMONS: Extended Manufacturer Usage Description to Restrain Malicious Smartphone Apps | IEEE Conference Publication | IEEE Xplore

DEMONS: Extended Manufacturer Usage Description to Restrain Malicious Smartphone Apps


Abstract:

The growing popularity of the consumer IoT intensifies the risks for security and privacy breaches. It typically suffices to successfully attack a single IoT device to ac...Show More

Abstract:

The growing popularity of the consumer IoT intensifies the risks for security and privacy breaches. It typically suffices to successfully attack a single IoT device to access the home network illicitly. This observation emphasizes the need for in-network security, complementing each device’s security mechanisms with additional network-layer protection. Recently, the IETF proposed Manufacturer Usage Description (MUD) to limit network traffic of IoT devices to their required minimum. However, the tangled communication of IoT devices, e.g., connections to smartphones and smart speakers, is not covered by MUD. We propose Distributed Enforcement of MUD on Smartphones (DEMONS), extending central enforcement of MUD with distributed enforcement at authenticated smartphones to mitigate the threats of malicious apps and IoT devices by filtering malicious traffic close to its origin and preventing further spread. We discuss the security gains and demonstrate that the introduced overhead regarding latency, bandwidth, and power consumption has a negligible performance impact.
Date of Conference: 04-07 October 2021
Date Added to IEEE Xplore: 07 September 2021
ISBN Information:
Print on Demand(PoD) ISSN: 0742-1303
Conference Location: Edmonton, AB, Canada

References

References is not available for this document.