Smart Home Automation


New method to defend against smart home device attacks

29 July 2020

Instead of relying on customers to protect their vulnerable smart home devices from being used in cyber-attacks, Ben-Gurion University of the Negev (BGU) and National University of Singapore (NUS) researchers have developed a new method that enables telecommunications and Internet service providers to monitor these devices.

According to their new study published in Computers & Security, the ability to launch massive distributed denial-of-service (DDoS) attacks via a botnet of compromised devices is an exponentially growing risk in the Internet of Things (IoT). Such massive attacks, possibly emerging from IoT devices in home networks, impact the attack target, as well as the infrastructure of telecommunication service providers (telcos).

“Most home users don’t have the awareness, knowledge, or means to prevent or handle ongoing attacks,” says Yair Meidan, a Ph.D. candidate in the BGU Department of Software and Information Systems Engineering (SISE). “As a result, the burden falls on the telcos to handle. Our method addresses a challenging real-world problem that has already caused attacks in Germany and Singapore, and poses a risk to telco infrastructure and their customers worldwide.”

Each connected device has a unique IP address. However, home networks typically use gateway routers with NAT (network address translation) functionality, which replaces the local source IP address of each outbound data packet with the household router’s public IP address. Consequently, detecting connected IoT devices from outside the home network is a challenging task.

The researchers developed a method to detect connected, vulnerable IoT models before they are compromised by monitoring the data traffic from each smart home device. This enables telcos to verify whether specific IoT models, known to be vulnerable to exploitation by malware for cyber-attacks, are connected to the home network. It helps telcos identify potential threats to their networks and take preventive actions quickly.

By using the proposed method, a telco can detect vulnerable IoT devices connected behind a NAT, and use this information to take action. In the case of a potential DDoS attack, this method would enable the telco to take steps to spare the company and its customers from harm in advance, such as offloading the large volume of traffic generated by an abundance of infected domestic IoT devices. In turn, this could prevent the combined traffic surge from hitting the telco’s infrastructure, reduce the likelihood of service disruption, and ensure continued service availability.

“Unlike some past studies that evaluated their methods using partial, questionable, or completely unlabelled datasets, or just one type of device, our data is versatile and explicitly labelled with the device model,” Meidan says. “We are sharing our experimental data with the scientific community as a novel benchmark to promote future reproducible research in this domain [1].”

This research is a first step toward dramatically mitigating the risk posed to telcos’ infrastructure by domestic NAT IoT devices. In the future, the researchers seek to further validate the scalability of the method, using additional IoT devices that represent an even broader range of IoT models, types and manufacturers.

“Although our method is designed to detect vulnerable IoT devices before they are exploited, we plan to evaluate the resilience of our method to adversarial attacks in future research,” Meidan says. “Similarly, a spoofing attack, in which an infected device performs many dummy requests to IP addresses and ports that are different from the default ones, could result in missed detection.”

[1] This dataset can be found here: https://doi.org/10.5281/zenodo.3924770




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Came Domotic 3.0: smart technology to adapt your home to the lifestyle of the people who live in it
29 July 2020
Came’s home automation system gives you total control so that you can manage comfort and security with a focus on energy saving.

Read more...
Modern homes work for the owner
29 July 2020
The challenge is how to integrate systems so that they're easy to operate and don't end up adding more complexity.

Read more...
‘Works With’ smart home virtual conference
29 July 2020
From 9-10 September 2020, Silicon Labs will be hosting a virtual conference that aims to help those interested in smart home automation to learn to work with Silicon Labs’ ecosystem of partners from Amazon, ...

Read more...
Cost-effective smart building retrofit system
29 July 2020, ElectroMechanica
Retrofitting older building stock with ‘smart’ automation solutions is now possible with the latest Hager system introduced locally by leading supplier ElectroMechanica (EM). Known as coviva, the system ...

Read more...
Bose introduces new smart speaker and soundbars
29 July 2020
The next chapter in Bose’s legendary home audio history.

Read more...
GSM boosters
30 June 2020, Otto Wireless
Otto Wireless Solutions’ ICASA approved, non network-locked boosters have two incredible features which have led to their mass adoption.

Read more...
Mesh Wi-Fi made easy
30 June 2020, Otto Wireless
Running a smart environment on a Wi-Fi backbone requires a good Wi-Fi mesh system, with low latency, and reliable handover between Wi-Fi access points.

Read more...
Bang & Olufsen debuts Beovision Harmony at Milan Design Week
30 June 2020
Beovision Harmony is a stunning piece of design that once again demonstrates Bang & Olufsen’s uncompromising approach to design, craftsmanship and sound performance.

Read more...
Bose announces portable home speaker
30 June 2020
Battery-powered Wi-Fi and Bluetooth, built-in voice control, AirPlay 2 and Spotify Connect, all from one amazing speaker.

Read more...
CamdenBoss broadens its Room Sensor Enclosure range
30 June 2020, Vepac Electronics
CamdenBoss has introduced two new sizes to its popular Room Sensor Enclosure range, with three available size options.

Read more...