Description:
Explore a comprehensive security analysis of smart home platforms in this 22-minute USENIX Security '19 conference talk. Delve into the complex interactions between IoT devices, mobile apps, and cloud services, uncovering potential vulnerabilities in widely-used smart home systems. Learn about reverse-engineering techniques, including firmware analysis, network traffic interception, and blackbox testing, used to create state transition diagrams for smart home entities. Discover how unexpected state transitions can lead to new vulnerabilities, and understand the implementation of phantom devices to trigger and confirm these security risks. Gain insights into specific attack examples, such as Phantom Device Substitution and Phantom Device Hijacking, and explore their underlying causes. Conclude with mitigation suggestions, including state machine enforcement, to enhance the security of smart home platforms.
Discovering and Understanding the Security Hazards in the Interactions between IoT Devices, Mobile Apps, and Clouds on Smart Home Platforms
Add to list
#Conference Talks
#USENIX Security
#Information Security (InfoSec)
#Cybersecurity
#Reverse Engineering
#Network Security
#Network Traffic Analysis
#IoT security
#Vulnerability Assessment
#Engineering
#Electrical Engineering
#Embedded Systems
#Firmware Analysis
#Computer Science
#Internet of Things
#Smart Homes
#Home Automation
#Smart Home Security
0:00 / 0:00