IOT Security for IOTMon Attacks Based on Devices’ app Description

Author

Raghad Jameel A. Alhazmi, Florida Institute of Technology

Date of Award

5-2022

Document Type

Thesis

Degree Name

Master of Science (MS)

Department

Computer Engineering and Sciences

First Advisor

Marius C. Silaghi

Second Advisor

Siddhartha Bhattacharyya

Third Advisor

Veton Kepuska

Fourth Advisor

Philip Bernhard

Abstract

There are concerns associated with ”inter-app” interactions, which occur when many independently developed home automation apps interact and affect one another, causing possibly dangerous unexpected app action. We extended a security tool named IoTMon, an IoT device management system capable of identifying all potential cross-app communication paths and analyzing their danger status. As part of our work, we keep an eye on the app description and safeguard IoTMon from being altered in any way that could obscure the real interaction related to another app action. We validate the IoTMon system’s integrity by applying the hash algorithm SHA512 with digital signature on the system files to ensure that it is dependable in controlling inter-app interactions. The extended IoTMon was able to identify and fix 22 out of 92 apps that their descriptions had been altered. Our evaluation indicates that the user will be notified of either purposefully or unintentionally modification in the IoTMon.

Comments

Copyright held by author

Recommended Citation

Alhazmi, Raghad Jameel A., "IOT Security for IOTMon Attacks Based on Devices’ app Description" (2022). Theses and Dissertations. 1323.
https://repository.fit.edu/etd/1323