A framework for evaluating the security and privacy of smart-home devices, and its application to common platforms
[mangar:framework]
Ravindra Mangar, Timothy J. Pierson, and David Kotz. A framework for evaluating the security and privacy of smart-home devices, and its application to common platforms. IEEE Pervasive Computing, volume 23, number 3, pages 7–19. IEEE, July 2024. doi:10.1109/MPRV.2024.3421668. ©Copyright the authors.Abstract:
In this article, we outline the challenges associated with the widespread adoption of smart devices in homes. These challenges are primarily driven by scale and device heterogeneity: a home may soon include dozens or hundreds of devices, across many device types, and may include multiple residents and other stakeholders. We develop a framework for reasoning about these challenges based on the deployment, operation, and decommissioning life cycle stages of smart devices within a smart home. We evaluate the challenges in each stage using the well-known CIA triad—Confidentiality, Integrity, and Availability. In addition, we highlight open research questions at each stage. Further, we evaluate solutions from Apple and Google using our framework and find notable shortcomings in these products. Finally, we sketch some preliminary thoughts on a solution for the smart home of the near future.
Citable with [BibTeX]
Projects: [splice]
Keywords: [iot] [privacy] [security] [sensors] [wifi]
Available from the publisher: [DOI]
Available from the author:
[bib]
[pdf]
This pdf was produced by the publisher and its posting here is permitted by the publisher.