New method to defend against smart home device attacks

Issue 6 2020 Smart Home Automation

Instead of relying on customers to protect their vulnerable smart home devices from being used in cyber-attacks, Ben-Gurion University of the Negev (BGU) and National University of Singapore (NUS) researchers have developed a new method that enables telecommunications and Internet service providers to monitor these devices.

According to their new study published in Computers & Security, the ability to launch massive distributed denial-of-service (DDoS) attacks via a botnet of compromised devices is an exponentially growing risk in the Internet of Things (IoT). Such massive attacks, possibly emerging from IoT devices in home networks, impact the attack target, as well as the infrastructure of telecommunication service providers (telcos).

“Most home users don’t have the awareness, knowledge, or means to prevent or handle ongoing attacks,” says Yair Meidan, a Ph.D. candidate in the BGU Department of Software and Information Systems Engineering (SISE). “As a result, the burden falls on the telcos to handle. Our method addresses a challenging real-world problem that has already caused attacks in Germany and Singapore, and poses a risk to telco infrastructure and their customers worldwide.”

Each connected device has a unique IP address. However, home networks typically use gateway routers with NAT (network address translation) functionality, which replaces the local source IP address of each outbound data packet with the household router’s public IP address. Consequently, detecting connected IoT devices from outside the home network is a challenging task.

The researchers developed a method to detect connected, vulnerable IoT models before they are compromised by monitoring the data traffic from each smart home device. This enables telcos to verify whether specific IoT models, known to be vulnerable to exploitation by malware for cyber-attacks, are connected to the home network. It helps telcos identify potential threats to their networks and take preventive actions quickly.

By using the proposed method, a telco can detect vulnerable IoT devices connected behind a NAT, and use this information to take action. In the case of a potential DDoS attack, this method would enable the telco to take steps to spare the company and its customers from harm in advance, such as offloading the large volume of traffic generated by an abundance of infected domestic IoT devices. In turn, this could prevent the combined traffic surge from hitting the telco’s infrastructure, reduce the likelihood of service disruption, and ensure continued service availability.

“Unlike some past studies that evaluated their methods using partial, questionable, or completely unlabelled datasets, or just one type of device, our data is versatile and explicitly labelled with the device model,” Meidan says. “We are sharing our experimental data with the scientific community as a novel benchmark to promote future reproducible research in this domain [1].”

This research is a first step toward dramatically mitigating the risk posed to telcos’ infrastructure by domestic NAT IoT devices. In the future, the researchers seek to further validate the scalability of the method, using additional IoT devices that represent an even broader range of IoT models, types and manufacturers.

“Although our method is designed to detect vulnerable IoT devices before they are exploited, we plan to evaluate the resilience of our method to adversarial attacks in future research,” Meidan says. “Similarly, a spoofing attack, in which an infected device performs many dummy requests to IP addresses and ports that are different from the default ones, could result in missed detection.”

[1] This dataset can be found here: https://doi.org/10.5281/zenodo.3924770




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

How to effectively share household devices
Smart Home Automation Information Security
Sharing electronic devices within a household is unavoidable. South African teens spend over eight hours per day online, making device sharing among family members commonplace. Fortunately, there are methods to guarantee safe usage for everyone.

Read more...
Panasonic Industry offers multi-tier Matter Certificate Service
Smart Home Automation IoT & Automation
Panasonic Industry Europe is now offering PAN-MaX, a multi-tier Matter Certificate Service designed for device manufacturers selling in the smart home market, to simplify Matter enablement for smart home devices.

Read more...
Smart opener for gates and garages
Smart Home Automation Access Control & Identity Management
The Smart Gate and Garage Opener allows consumers to control and monitor gates and garage doors that have already been fitted with automation devices via the Yale Home app on their smartphone.

Read more...
Ring announces second generation indoor camera
Smart Home Automation Surveillance Residential Estate (Industry)
Introducing a removable manual privacy cover, Ring's latest indoor camera provides customers with increased privacy, control and peace of mind when it comes to home security.

Read more...
Understanding the language of connectivity
Smart Home Automation
Having a better understanding of the available options can help you communicate your internet needs more effectively with a service provider. You don't need to be an expert on the topic, but having some insight can ensure you always stay connected.

Read more...
IoT users’ cybersecurity outlook
Smart Home Automation IoT & Automation
A new global survey conducted by Kaspersky ‘The smart home of almost everything: From the fridge to TV, how we’ll embrace the year of the virtual assistant in 2023’, explores the key digital habits, obstacles and smart home device usage.

Read more...
Intelligent security for high-end complex
Dahua Technology South Africa Smart Home Automation
Residents can enjoy a smart and convenient living experience brought by advanced AI technology, make video conversations with guests, call security personnel for help, or manage all smart home control systems remotely.

Read more...
Batteries creating false alarms due to load shedding
Uniross Batteries Smart Home Automation Products & Solutions
A local security company has solved the problem of receiving false alarms during loadshedding by replacing its customers’ 12 V lead batteries with lithium batteries.

Read more...
Smart home security
Olarm Smart Home Automation Perimeter Security, Alarms & Intruder Detection Products & Solutions
The applied use of smart technology within the Olarm ecosystem, through smart features coupled with existing systems, extends the benefits of technology into different spheres.

Read more...
All-in-one smart access solution for residential living
Salto Systems Africa Smart Home Automation
SALTO Homelok is set to change residential living with its all-in-one solution that integrates smart access control technology, hardware, cloud software, digital keys, a smart living ecosystem, and global service support.

Read more...