TU Darmstadt / ULB / TUbiblio

IoT Sentinel: Automated Device-Type Identification for Security Enforcement in IoT

Miettinen, Markus and Marchal, Samuel and Hafeez, Ibbad and Asokan, N. and Sadeghi, Ahmad-Reza and Tarkoma, Sasu (2017):
IoT Sentinel: Automated Device-Type Identification for Security Enforcement in IoT.
In: Proc. 37th IEEE International Conference on Distributed Computing Systems (ICDCS 2017), DOI: 10.1109/ICDCS.2017.283,
[Conference or Workshop Item]

Abstract

With the rapid growth of the Internet-of-Things (IoT), concerns about the security of IoT devices have become prominent. Several vendors are producing IP-connected devices for home and small office networks that often suffer from flawed security designs and implementations. They also tend to lack mechanisms for firmware updates or patches that can help eliminate security vulnerabilities. Securing networks where the presence of such vulnerable devices is given, requires a <i>brownfield approach</i>: applying necessary protection measures within the network so that potentially vulnerable devices can coexist without endangering the security of other devices in the same network.<br />In this paper, we present IoT Sentinel, a system capable of automatically identifying the types of devices being connected to an IoT network and enabling enforcement of rules for constraining the communications of vulnerable devices so as to minimize damage resulting from their compromise. We show that&nbsp;IoT Sentinel&nbsp;is effective in identifying device types and has minimal performance overhead.

Item Type: Conference or Workshop Item
Erschienen: 2017
Creators: Miettinen, Markus and Marchal, Samuel and Hafeez, Ibbad and Asokan, N. and Sadeghi, Ahmad-Reza and Tarkoma, Sasu
Title: IoT Sentinel: Automated Device-Type Identification for Security Enforcement in IoT
Language: German
Abstract:

With the rapid growth of the Internet-of-Things (IoT), concerns about the security of IoT devices have become prominent. Several vendors are producing IP-connected devices for home and small office networks that often suffer from flawed security designs and implementations. They also tend to lack mechanisms for firmware updates or patches that can help eliminate security vulnerabilities. Securing networks where the presence of such vulnerable devices is given, requires a <i>brownfield approach</i>: applying necessary protection measures within the network so that potentially vulnerable devices can coexist without endangering the security of other devices in the same network.<br />In this paper, we present IoT Sentinel, a system capable of automatically identifying the types of devices being connected to an IoT network and enabling enforcement of rules for constraining the communications of vulnerable devices so as to minimize damage resulting from their compromise. We show that&nbsp;IoT Sentinel&nbsp;is effective in identifying device types and has minimal performance overhead.

Title of Book: Proc. 37th IEEE International Conference on Distributed Computing Systems (ICDCS 2017)
Uncontrolled Keywords: ICRI-SC
Divisions: 20 Department of Computer Science
20 Department of Computer Science > System Security Lab
Profile Areas
Profile Areas > Cybersecurity (CYSEC)
Date Deposited: 07 Mar 2017 11:34
DOI: 10.1109/ICDCS.2017.283
Additional Information:

(to appear)

Identification Number: TUD-CS-2017-0056
Related URLs:
Export:
Suche nach Titel in: TUfind oder in Google

Optionen (nur für Redakteure)

View Item View Item