Yang Bo,Guo Haoran,Feng Junhui,Li Ge,Jin Zhi

DOI: https://doi.org/10.7544/issn1000-1239.202110941

2023-01-01

Abstract:The core of the Internet of things（IoT） system architecture is the logic controller. The logic controller uses rules to control the business logic, which reduces the development and maintenance costs of the IoT system and improves the flexibility of the IoT devices. As the scale of the IoT system expands, the relationship between the rules becomes complicated. This may cause rule conflicts. In response to this problem, some researchers have proposed some detection methods for rule conflicts. However, the existing rule conflict detection methods still have some problems, such as incomplete analysis of rule conflict types and low accuracy of detection results. For these reasons, a formal rule conflict detection（FRCD） method for the control logic of the IoT intelligent system is proposed. This method formalizes the structure of rules, and defines rules as a combination of control subjects, actions, trigger conditions, and symbols. Then according to the influence of the rules on the system and the structural characteristics of the rules, 7 types of rule conflicts are summarized. Finally, an algorithm for rule conflict detection is designed, and the detailed process of rule conflict detection is introduced. We carry out experiments on two IoT systems and compare them with three typical IoT rule conflict detection methods. These three methods are the formal rule model conflict detection method based user, triggers, environment entities, and actuators（UTEA）, semantic web-based policy interaction detection with rules（SPIDER）, identifying requirements interactions using semiformal（IRIS）. The experimental results show that the formal rule conflict detection method in this paper is more effective.

Dipankar Chaki,Athman Bouguettaya

DOI: https://doi.org/10.48550/arXiv.2007.12487

2020-07-23

Abstract:We propose a novel framework to detect conflicts among IoT services in a multi-resident smart home. A fine-grained conflict model is proposed considering the functional and non-functional properties of IoT services. The proposed conflict model is designed using the concept of entropy and information gain from information theory. We use a novel algorithm based on temporal proximity to detect conflicts. Experimental results on real-world datasets show the efficiency of the proposed approach.

Computers and Society,Distributed, Parallel, and Cluster Computing

Bing Huang,Dipankar Chaki,Athman Bouguettaya,Kwok-Yan Lam

DOI: https://doi.org/10.48550/arXiv.2310.04447

2023-10-03

Abstract:As the adoption of IoT-based smart homes continues to grow, the importance of addressing potential conflicts becomes increasingly vital for ensuring seamless functionality and user satisfaction. In this survey, we introduce a novel conflict taxonomy, complete with formal definitions of each conflict type that may arise within the smart home environment. We design an advanced conflict model to effectively categorize these conflicts, setting the stage for our in-depth review of recent research in the field. By employing our proposed model, we systematically classify conflicts and present a comprehensive overview of cutting-edge conflict detection approaches. This extensive analysis allows us to highlight similarities, clarify significant differences, and uncover prevailing trends in conflict detection techniques. In conclusion, we shed light on open issues and suggest promising avenues for future research to foster accelerated development and deployment of IoT-based smart homes, ultimately enhancing their overall performance and user experience.

Human-Computer Interaction

Rong Yang,Mou Wu,Xueqin Gui,Hongsheng Chen

DOI: https://doi.org/10.1007/s40747-024-01349-8

IF: 6.7

2024-02-24

Complex & Intelligent Systems

Abstract:Abstract Internet of Things has become a common paradigm for various domains. To meet a user’s complex requirement, we should compose multiple IoT devices (IoT services) to provide comprehensive services to the user. However, these services usually coexist, which is likely to lead to conflicts. Moreover, each user may have different kinds of needs. Suppose that in a smart home there are more than one person, a conflict may occur when they request the same service in this environment. Actually, even though they request different IoT services, among which if there exists function impact or QoS impact, a conflict could still occur. In this paper, we propose to employ high-level Petri nets to detect conflicts among IoT services. We first model the formal methods for conflict policies. Then, we present a Petri nets-based mechanism for modeling and detecting conflicts. Finally, we expand the previous model and use high-level Petri nets for handling fuzzy IoT conflict policies modeling and reasoning. The experimental results show that the proposed approach performs well in accuracy.

computer science, artificial intelligence

Yuanyu Zhang,Shoji Kasahara,Yulong Shen,Xiaohong Jiang,Jianxiong Wan

DOI: https://doi.org/10.1109/jiot.2018.2847705

IF: 10.6

2018-01-01

IEEE Internet of Things Journal

Abstract:This paper investigates a critical access control issue in the Internet of Things (IoT). In particular, we propose a smart contract-based framework, which consists of multiple access control contracts (ACCs), one judge contract (JC) and one register contract (RC), to achieve distributed and trustworthy access control for IoT systems. Each ACC provides one access control method for a subject-object pair, and implements both static access right validation based on predefined policies and dynamic access right validation by checking the behavior of the subject. The JC implements a misbehavior-judging method to facilitate the dynamic validation of the ACCs by receiving misbehavior reports from the ACCs, judging the misbehavior and returning the corresponding penalty. The RC registers the information of the access control and misbehavior-judging methods as well as their smart contracts, and also provides functions (e.g., register, update and delete) to manage these methods. To demonstrate the application of the framework, we provide a case study in an IoT system with one desktop computer, one laptop and two Raspberry Pi single-board computers, where the ACCs, JC and RC are implemented based on the Ethereum smart contract platform to achieve the access control.

Adeeb Mansoor Ansari,Mohammed Nazir,Khurram Mustafa

DOI: https://doi.org/10.1109/access.2024.3415632

IF: 3.9

2024-06-25

IEEE Access

Abstract:Smart homes are the most adaptable and utilized application of the IoT. Smart homes enable end users to define and control the automation remotely by defining automation rules. The automation rules interaction results in the defined tasks and activities but also delivers unwanted interactions, which show adverse effects. Their interactions may consist of chained and covert rules interaction, which are hard to trace and identify. Attackers' malicious apps installed in smart homes may leverage rules' adverse effects to compromise smart home security and harm users, such as opening the window at night or when no one is home. To address such issues, we developed an ontology of smart home automation rules to identify such interactions. Prior works failed to provide the complete classification and could not identify all possible rule conflicts. In this work, we proposed the classification of automation rule interactions into five categories and recognized the potential rule conflicts. In addition, the ontology can examine rules interactions against the defined safety policies, providing an extra layer of security. The ontology will aid the designers in better understanding and developing a robust security mechanism at the design phase to resist rules interaction conflicts and their adverse effects. We examine this work on the thirty-five rules formed in the light of prior work test cases and validation. The results show that the proposed work is promising and can efficiently identify all the rule interaction conflicts in the smart home.

computer science, information systems,telecommunications,engineering, electrical & electronic

Ye Cheng,Minghui Xu,Yue Zhang,Kun Li,Ruoxi Wang,Lian Yang

2024-11-16

Abstract:IoT platforms, particularly smart home platforms providing significant convenience to people's lives such as Apple HomeKit and Samsung SmartThings, allow users to create automation rules through trigger-action programming. However, some users may lack the necessary knowledge to formulate automation rules, thus preventing them from fully benefiting from the conveniences offered by smart home technology. To address this, smart home platforms provide pre-defined automation policies based on the smart home devices registered by the user. Nevertheless, these policies, being pre-generated and relatively simple, fail to adequately cover the diverse needs of users. Furthermore, conflicts may arise between automation rules, and integrating conflict detection into the IoT platform increases the burden on developers. In this paper, we propose AutoIoT, an automated IoT platform based on Large Language Models (LLMs) and formal verification techniques, designed to achieve end-to-end automation through device information extraction, LLM-based rule generation, conflict detection, and avoidance. AutoIoT can help users generate conflict-free automation rules and assist developers in generating codes for conflict detection, thereby enhancing their experience. A code adapter has been designed to separate logical reasoning from the syntactic details of code generation, enabling LLMs to generate code for programming languages beyond their training data. Finally, we evaluated the performance of AutoIoT and presented a case study demonstrating how AutoIoT can integrate with existing IoT platforms.

Cryptography and Security

Xinbo Ban,Ming Ding,Shigang Liu,Chao Chen,Jun Zhang,Yang Xiang

DOI: https://doi.org/10.1007/978-3-030-95484-0_14

2022-01-01

Abstract:The Internet of Things (IoT) networks promote significant convenience in every aspect of our life, including smart vehicles, smart cities, smart homes, etc. With the advancement of IoT technologies, the IoT platforms bring many new features to the IoT devices so that these devices can not only passively monitor the environment (e.g. conventional sensors), but also interact with the physical surroundings (e.g. actuators). In this light, new problems of safety and security arise due to the new features. For instance, the unexpected and undesirable physical interactions might occur among devices, which is known as inter-rule vulnerability. A few work have investigated the inter-rule vulnerability from both cyberspace and physical channels. Unfortunately, only few research papers take advantage of run-time simulation techniques to properly model trigger action environments. Moreover, no simulation platform is capable of modeling primary physical channels and studies the impacts of physical interactions on IoT safety and security. In this paper, we introduce TAESim, a simulation testbed to support reusable simulations in the research of IoT safety and security, especially for the IoT activities in home automation that could involve possibly unexpected interactions. TAESim operates over MATLAB/Simulink and constructs a digital twin for modeling the nature of the trigger-action environment using simulations. It is an open-access platform and can be used by the research community, government, and industry who work toward preventing the safety and security consequences in the IoT ecosystem. In order to evaluate the effectiveness and efficiency of the testbed, we conduct some experiments and the results show that the simulations are completed in a few seconds. We also present two case studies that can report unexpected consequences.

Dipankar Chaki,Athman Bouguettaya,Abdallah Lakhdari

2024-06-01

Abstract:We propose a novel impact conflict detection framework for IoT services in multi-resident smart homes. The proposed impact assessment model is developed based on the integral of a signal deviation strategy. We mine the residents' previous service usage records to design a robust preference estimation model. We design an impact conflict detection approach using temporal proximity and preferential proximity techniques. Experimental results on real-world datasets demonstrate the effectiveness of the proposed approach.

Distributed, Parallel, and Cluster Computing

Waleed M. Ismael,Mingsheng Gao,Zhengming Chen,Zaid Yemeni,Ammar Hawbani,Xuewu Zhang

DOI: https://doi.org/10.1016/j.pmcj.2020.101318

IF: 3.848

2020-01-01

Pervasive and Mobile Computing

Abstract:In Internet of Things (IoT), data are collected from various sources (e.g., sensors and databases) to describe a phenomenon under-observation. Due to the lack of knowledge about the measurement environment and the limited accuracy of data sources, the IoT data inevitably appears uncertain, imperfect, and conflicting. This would lead to high data conflict among different data sources, and the final result of data fusion is degraded. This paper presents an edge-based data conflict resolution approach for IoT to tackle these issues while maintaining an accurate and reliable result. In the proposed approach, data conflict is significantly alleviated using two phases. The first is Faulty Data Detection and Correction (FDDC), which runs based on the confidence interval and estimated data. The second is Data Conflict Measure and Fusion (DCMF), which is developed to compute the degree of conflict among different data sources based on Fuzzy measures and calculate each data source’s credibility degree. Then, data fusion is carried out based on the Minimum Mean Square Error (MMSE) criterion accordingly. The simulation results reveal the remarkable effectiveness and efficiency of the proposed approach for solving IoT conflicting data.

Bharathan Balaji,Brad Campbell,Amit Levy,Xiaozhou Li,Addison Mayberry,Nirupam Roy,Vasuki Narasimha Swamy,Longqi Yang,Victor Bahl,Ranveer Chandra,Ratul Mahajan

DOI: https://doi.org/10.48550/arXiv.1701.01894

2017-01-08

Abstract:Internet of Things (IoT) promises to bring ease of monitoring, better efficiency and innovative services across many domains with connected devices around us. With information from critical parts of infrastructure and powerful cloud-based data analytics, many applications can be developed to gain insights about IoT systems as well as transform their capabilities. Actuation applications form an essential part of these IoT systems, as they enable automation as well as fast low-level decision making. However, modern IoT systems are designed for data acquisition, and actuation applications are implemented in an ad-hoc manner. We identify modeling constraints in a systematic manner as indispensable to support actuation applications because constraints encompass high-level policies dictated by laws of physics, legal policies, user preferences. We explore data models for constraints inIoT system with the example of a home heating system and illustrate the challenges in enforcing these constraints in theIoT system architecture.

Systems and Control

Ningning Chen,Huibiao Zhu

DOI: https://doi.org/10.1002/smr.2595

2024-01-01

Abstract:With the rapid popularization of smart devices, the applications and technologies of the Internet of Things (IoT) are in high demand worldwide, especially in improving development efficiency and ensuring system quality, reliability, and security. Formal methods have been successfully used to specify, verify, and analyze software and hardware systems, effectively alleviating the above problems in these systems. However, most of the existing works mainly focus on the practical applications of IoT, and there is a lack of research on modeling and analyzing IoT systems from the perspective of formal methods. In this paper, we first propose a secure mobile real-time process calculus for specifying and reasoning about IoT systems, called SMrCaIT, which supports not only value-passing communication but also name-passing communication. In addition, this calculus can strictly separate process actions and mobility modeling by providing parametric mobility models. Subsequently, we present the operational semantics of this calculus, in particular, the rules on how to secure channel communication by closing the scope of a channel and handling scope extrusion. Taking vehicle ad hoc network (VANET) as a case, the application details of SMrCaIT and its operational semantics are fully demonstrated. By using the rewrite engine Real-Time Maude, we further implement SMrCaIT and its operational semantics and verify some properties of the VANET case to indicate the effectiveness of our calculus in real-world scenes.

Xinbo Ban,Ming Ding,Shigang Liu,Chao Chen,Jun Zhang

DOI: https://doi.org/10.1109/jiot.2023.3325851

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Smart homes (SHs) are rapidly evolving to incorporate intelligent features, including environment management, home automation, and human-machine interactions. However, safety and security risks of SHs hinder their wide adoption. Many work attempts to provide defense mechanisms to ensure safety and security against inter-rule vulnerabilities and spoofing attacks. This paper proposes IoTFuzz, a fuzzing framework that dynamically address cyber security and physical safety aspects of SHs through targeted policies. IoTFuzz mutates the inputs from policies, human activities, indoor environment, and reallife outdoor weather conditions. In addition to the binary status of devices, the continuous-value status in SHs is leveraged to perform mutation and simulation. The policies are expressed as temporal logic formulas with time constraints. For largescale testing, IoTFuzz employs digital twins to simulate normal behaviors, outdoor environment impacts, and human activities in SHs. Moreover, IoTFuzz can also intelligently infer rulepolicy correlation based on Natural Language Processing (NLP) techniques. Evaluation of IoTFuzz in a configured SH with 15 rules and 10 pre-defined unique policies demonstrates its effectiveness in revealing the impacts of real-life outdoor environment. The experimental results demonstrate a range of violations, with a maximum of 4154 violations and a minimum of 41 violations observed over an 8-year period under varying weather conditions. IoTFuzz also identifies the potential risks associated with improper human activities, accounting for up to 35.4% of risky situations in SHs.

computer science, information systems,telecommunications,engineering, electrical & electronic

Dipankar Chaki,Athman Bouguettaya

DOI: https://doi.org/10.48550/arXiv.2110.07083

2021-10-14

Abstract:We propose a novel conflict resolution framework for IoT services in multi-resident smart homes. The proposed framework employs a preference extraction model based on a temporal proximity strategy. We design a preference aggregation model using a matrix factorization-based approach (i.e., singular value decomposition). The concepts of current resident item matrix and ideal resident item matrix are introduced as key criteria to cater to the conflict resolution framework. Finally, a set of experiments on real-world datasets are conducted to show the effectiveness of the proposed approach.

Computers and Society,Distributed, Parallel, and Cluster Computing

Christian Attiogbé,Jérôme Rocheteau

DOI: https://doi.org/10.48550/arXiv.1912.08912

2019-12-18

Software Engineering

Abstract:Internet of Things applications impact more and more industrial areas such as smart manufacturing, smart health monitoring and home automation; physical objects or devices equipped with sensors and actuators are interconnected and then controlled with software applications. Ensuring the correct construction, the well-functioning and the reliability of these applications constitute important issues for some of these applications which can be critical in case of dysfunction. We propose on the basis of the formal model of their common architectural properties, a generic framework for the formal modelling of IoT-based applications, the rigorous analysis of their consistency properties, their rigorous construction and evolution. Specific properties can be gradually added and checked. The proposed framework is then implemented and experimented using Event-B. We exploit the observation that the main requirements of the IoT-based physical architectures and control software are common to all IoT-based applications; this leaded us to the definition of the generic formal model together with invariant architectural and consistency properties. The proposed approach is generic, extensible, and can be profitably adapted to more general hybrid or cyber-physical systems. Our current implementation is independent of the formal model, it can be achieved in various other formal analysis environments.

Vuk Lesi,Zivana Jakovljevic,Miroslav Pajic

DOI: https://doi.org/10.1109/tase.2021.3106335

IF: 6.636

2021-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:Internet of Things (IoT) technologies enable development of reconfigurable manufacturing systems—a new generation of modularized industrial equipment suitable for highly customized manufacturing. Sequential control in these systems is largely based on discrete events, whereas their formal execution semantics is specified as control interpreted Petri nets (CIPN). Despite industry-wide use of programming languages based on the CIPN formalism, formal verification of such control applications in the presence of adversarial activity is not supported. Consequently, in this article, we introduce security-aware modeling and verification techniques for CIPN-based sequential control applications. Specifically, we show how CIPN models of networked industrial IoT controllers can be transformed into time Petri net (TPN)-based models and composed with plant and security-aware channel models in order to enable system-level verification of safety properties in the presence of network-based attacks. Additionally, we introduce realistic channel-specific attack models that capture adversarial behavior using nondeterminism. Moreover, we show how verification results can be utilized to introduce security patches and facilitate design of attack detectors that improve system resiliency and enable satisfaction of critical safety properties. Finally, we evaluate our framework on an industrial case study. Note to Practitioners—Our main goal is to provide formal security guarantees for distributed sequential controllers. Specifically, we target smart automation controllers geared toward Industrial IoT applications that are typically programed in C/C++ and are running applications originally designed in, for example, GRAFCET (IEC 60848)/SFC (IEC 61131-3) automation programming languages. Since existing tools for the design of distributed automation do not support system-level verification of relevant safety properties- we show how security-aware transceiver and communication models can be developed and composed with distributed controller models. Then, we show how existing tools for verification of time Petri nets can be used to verify relevant properties including safety and liveness of the distributed automation system in the presence of network-based attacks. To provide an end-to-end analysis as well as security patching, results of our analysis can be used to deploy suitable firmware updates during the stage when executable code for target controllers (e.g., in C/C++) is generated based on GRAFCET/SFC control models. We also show that security guarantees can be improved as the relevant safety/liveness properties can be verified after corresponding security patches are deployed. Finally, we show applicability of our framework on a realistic distributed pneumatic manipulator.

automation & control systems

Hai Lin,Chenglong Li,Jiahai Yang,Zhiliang Wang,Linna Fan,Chenxin Duan

DOI: https://doi.org/10.14722/ndss.2024.24003

2024-01-01

Abstract:Today, smart home platforms are widely used around the world and offer users automation to define their daily routines.However, individual automation rule anomalies and cross-automation threats that exist in different platforms put the smart home in danger.Recent researches focus on detecting these threats of the specific platform and can only cover limited threat plane.To solve these problems, we design a novel system called CP-IoT, which can monitor the execution behavior of the automation and discover the anomalies, as well as hidden risks among them on heterogeneous IoT platforms.Specifically, CP-IoT constructs a centralized, dynamic graph model for portraying the behavior of automation and the state transition.By analyzing two kinds of app pages with different description granularity, CP-IoT extracts the rule execution logic and collects user policy from different platforms.To detect the inconsistent behavior of an automation rule in different platforms, we propose a selflearning method for event fingerprint extraction by clustering the traffic of different platforms collected from the side channel, and an anomaly detection method by checking the rule execution behavior with its specification reflected in the graph model.To detect the cross-rule threats, we formalize each threat type as a symbolic representation and apply the searching algorithm on the graph.We validate the performance of CP-IoT on four platforms.The evaluation shows that CP-IoT can detect anomalies with high accuracy and effectively discover various types of cross-rule threats.

Akib Jawad Nafis,Omar Chowdhury,Endadul Hoque

2023-09-01

Abstract:Smart homes are powered by numerous programmable IoT platforms. Despite tremendous innovations, these platforms often suffer from safety and security issues. One class of defense solutions dynamically enforces safety and security policies, which essentially capture the expected behavior of the IoT system. While many proposed works were built on this runtime approach, they all are under-vetted. The primary reason lies in their evaluation approach. They are mostly self-evaluated in isolation using a virtual testbed combined with manually orchestrated test scenarios that rely on user interactions with the platform's UI. Such hand-crafted and non-uniform evaluation setups are limiting not only the reproducibility but also a comparative analysis of their efficacy results. Closing this gap in the traditional way requires a huge upfront manual effort, which causes the researchers turn away from any large-scale comparative empirical evaluation. Therefore, in this paper, we propose a highly-automated uniform evaluation platform, dubbed VetIoT, to vet the defense solutions that hinge on runtime policy enforcement. Given a defense solution, VetIoT easily instantiates a virtual testbed inside which the solution is empirically evaluated. VetIoT replaces manual UI-based interactions with an automated event simulator and manual inspection of test outcomes with an automated comparator. We developed a fully-functional prototype of VetIoT and applied it on three runtime policy enforcement solutions: Expat, Patriot, and IoTguard. VetIoT reproduced their individual prior results and assessed their efficacy results via stress testing and differential testing. We believe VetIoT can foster future research/evaluation.

Cryptography and Security

Yinbo Yu,Jiajia Liu

DOI: https://doi.org/10.1109/tifs.2022.3214084

IF: 7.231

2022-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Trigger-action programming (TAP) is a popular end-user programming framework that can simplify the Internet of Things (IoT) automation with simple trigger-action rules. However, it also introduces new security and safety threats. A lot of advanced techniques have been proposed to address this problem. Rigorously reasoning about the security of a TAP-based IoT system requires a well-defined model and verification method both against rule semantics and physical-world features, e.g., concurrency, rule latency, extended action, tardy attributes, and connection-based rule interactions, which has been missing until now. By analyzing these features, we find 9 new types of rule interaction vulnerabilities and validate them on two commercial IoT platforms. We then present TAPInspector, a novel system to detect these interaction vulnerabilities in concurrent TAP-based IoT systems. It automatically extracts TAP rules from IoT apps, translates them into a hybrid model by model slicing and state compression, and performs semantic analysis and model checking with various safety and liveness properties. Our experiments corroborate that TAPInspector is practical: it identifies 533 violations related to rule interaction from 1108 real-world market IoT apps and is at least 60000 times faster than the baseline without optimization.

Hao Wu,Wei Wang

DOI: https://doi.org/10.1109/tifs.2018.2790382

IF: 7.231

2018-01-01

IEEE Transactions on Information Forensics and Security

Abstract:A collaborative security detection method is investigated for the Internet of Things (IoT) systems. Consensus protocol is utilized to implement the information sharing and fusion in a collaborative manner. A game theoretical analysis framework is developed for the collaborative security detection by considering the confrontation between the defender and the attacker. The objective is to achieve the maximum security protection for the entire IoT systems. The existence and uniqueness of the Nash equilibrium of game model with complete consensus are analyzed. Then an iteration learning based calculation method is presented to determine the Nash equilibrium. Quantitative analysis is provided for the relationship between the Nash equilibriums of the game models in the cases of complete and incomplete consensus with infinite and finite number of iterations. Simulation results by considering DDoS attack are also provided to verify our theoretical results.