Lei Bu,Qiuping Zhang,Suwan Li,Jinglin Dai,Guangdong Bai,Kai Chen,Xuandong Li

DOI: https://doi.org/10.1145/3597926.3598084

2023-01-01

Abstract:Internet of Things (IoT) has become prevalent in various fields, especially in the context of home automation (HA). To better control HA-IoT devices, especially to integrate several devices for rich smart functionalities, trigger-action programming, such as the If This Then That (IFTTT), has become a popular paradigm. Leveraging it, novice users can easily specify their intent in applets regarding how to control a device/service through another once a specific condition is met. Nevertheless, the users may design IFTTT-style integrations inappropriately, due to lack of security experience or unawareness of the security impact of cyber-attacks against individual devices. This has caused financial loss, privacy leakage, unauthorized access and other security issues. To address these problems, this work proposes a systematic framework named MEDIC to model smart home integrations and check their security. It automatically generates models incorporating the service/device behaviors and action rules of the applets, while taking into consideration the external attacks and in-device vulnerabilities. Our approach takes around one second to complete the modeling and checking of one integration. We carried out experiments based on 200 integrations created from a user study and a dataset crawled from ifttt.com. To our great surprise, nearly 83% of these integrations have security issues.

Yinbo Yu,Jiajia Liu

DOI: https://doi.org/10.1109/tifs.2022.3214084

IF: 7.231

2022-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Trigger-action programming (TAP) is a popular end-user programming framework that can simplify the Internet of Things (IoT) automation with simple trigger-action rules. However, it also introduces new security and safety threats. A lot of advanced techniques have been proposed to address this problem. Rigorously reasoning about the security of a TAP-based IoT system requires a well-defined model and verification method both against rule semantics and physical-world features, e.g., concurrency, rule latency, extended action, tardy attributes, and connection-based rule interactions, which has been missing until now. By analyzing these features, we find 9 new types of rule interaction vulnerabilities and validate them on two commercial IoT platforms. We then present TAPInspector, a novel system to detect these interaction vulnerabilities in concurrent TAP-based IoT systems. It automatically extracts TAP rules from IoT apps, translates them into a hybrid model by model slicing and state compression, and performs semantic analysis and model checking with various safety and liveness properties. Our experiments corroborate that TAPInspector is practical: it identifies 533 violations related to rule interaction from 1108 real-world market IoT apps and is at least 60000 times faster than the baseline without optimization.

Bing Huang,Chen Chen,Kwok-Yan Lam,Fuqun Huang

2024-06-06

Abstract:Emerging Internet of Things (IoT) platforms provide sophisticated capabilities to automate IoT services by enabling occupants to create trigger-action rules. Multiple trigger-action rules can physically interact with each other via shared environment channels, such as temperature, humidity, and illumination. We refer to inter-rule interactions via shared environment channels as a physical inter-rule vulnerability. Such vulnerability can be exploited by attackers to launch attacks against IoT systems. We propose a new framework to proactively discover possible physical inter-rule interactions from user requirement specifications (i.e., descriptions) using a deep learning approach. Specifically, we utilize the Transformer model to generate trigger-action rules from their associated descriptions. We discover two types of physical inter-rule vulnerabilities and determine associated environment channels using natural language processing (NLP) tools. Given the extracted trigger-action rules and associated environment channels, an approach is proposed to identify hidden physical inter-rule vulnerabilities among them. Our experiment on 27983 IFTTT style rules shows that the Transformer can successfully extract trigger-action rules from descriptions with 95.22% accuracy. We also validate the effectiveness of our approach on 60 SmartThings official IoT apps and discover 99 possible physical inter-rule vulnerabilities.

Cryptography and Security,Artificial Intelligence

Xuyang Chen,Xiaolu Zhang,Michael Elliot,Xiaoyin Wang,Feng Wang

DOI: https://doi.org/10.1016/j.cose.2022.102812

IF: 5.105

2022-01-01

Computers & Security

Abstract:The Internet of Things (IoT) connects all emerging devices and services while creating interactions between people and things. Allowing users to match devices and services by causal relationship, Trigger-Action Programming (TAP) is a common user-programming paradigm in IoT smart home platforms. Thus, the security issues of TAP need to be addressed to ensure the privacy and security of data and human safety. This paper summarizes the existing literature on 1) security issues caused by different types of logical errors found in TAP rules and the vulnerabilities on well-known TAP platforms, and 2) the corresponding detection techniques and solutions that are classified based on different types of approaches adopted (e.g., Model Checking and Natural Language Processing). Finally, we summarized the datasets from literature or publicly available on the Internet in a separate section for potential reference of future TAP security research. (C) 2022 Published by Elsevier Ltd.

Yongheng Xing,Liang Hu,Xinqi Du,Zhiqi Shen,Juncheng Hu,Feng Wang

DOI: https://doi.org/10.1016/j.eswa.2024.124724

IF: 8.5

2024-01-01

Expert Systems with Applications

Abstract:Trigger-Action Programming (TAP) is a common user-programming paradigm in Internet of Things (IoT) smart home platforms, allowing users to create customized automation rules to match IoT devices and network services. However, the potential security threats associated with TAP rules are often overlooked or underestimated by users. To address this issue, we propose PFTAP, a novel federated graph learning framework for threat detection of TAP rules while simultaneously protecting user data and privacy. First, we propose a hierarchical graph attention network. This network comprises intra-rule attention and inter-rule attention modules, which enable the learning of comprehensive feature representations for triggers and actions. By capturing the intricate relationships between different rules, the network enhances the detection accuracy of risky TAP rules. Moreover, our framework is based on federated learning and integrates symmetric encryption and local differential privacy techniques, aiming to safeguard user privacy from unauthorized access or tampering. To evaluate the effectiveness of our framework, we conduct experiments using an extensive dataset of IFTTT rules. The experimental results convincingly demonstrate that PFTAP outperforms state-of-the-art methods in terms of threat detection performance.

Kai-Hsiang Hsu,Yu-Hsi Chiang,Hsu-Chun Hsiao

DOI: https://doi.org/10.1109/TIFS.2019.2899758

2019-03-09

Abstract:The proliferation of Internet of Things (IoT) is reshaping our lifestyle. With IoT sensors and devices communicating with each other via the Internet, people can customize automation rules to meet their needs. Unless carefully defined, however, such rules can easily become points of security failure as the number of devices and complexity of rules increase. Device owners may end up unintentionally providing access or revealing private information to unauthorized entities due to complex chain reactions among devices. Prior work on trigger-action programming either focuses on conflict resolution or usability issues, or fails to accurately and efficiently detect such attack chains. This paper explores security vulnerabilities when users have the freedom to customize automation rules using trigger-action programming. We define two broad classes of attack--privilege escalation and privacy leakage--and present a practical model-checking-based system called SAFECHAIN that detects hidden attack chains exploiting the combination of rules. Built upon existing model-checking techniques, SAFECHAIN identifies attack chains by modeling the IoT ecosystem as a Finite State Machine. To improve practicability, SAFECHAIN avoids the need to accurately model an environment by frequently re-checking the automation rules given the current states, and employs rule-aware optimizations to further reduce overhead. Our comparative analysis shows that SAFECHAIN can efficiently and accurately identify attack chains, and our prototype implementation of SAFECHAIN can verify 100 rules in less than one second with no false positives.

Cryptography and Security

Ping Wang,Kuo-Ming Chao,Chi-Chun Lo,Wen-Hui Lin,Hsiao-Chung Lin,Wun-Jie Chao

DOI: https://doi.org/10.1177/1550147716662947

IF: 1.938

2016-01-01

International Journal of Distributed Sensor Networks

Abstract:Numerous security concerns exist in smart home systems in which Internet of Things devices are connected through a home network to enable control using a centralised gateway with a handset device from the Internet. Safeguarding personal information privacy is an increasing concern in smart living services. To guarantee the mobile security of smart living services, security managers use taint checking approaches with dynamic taint propagation analysis operations to examine how a software-defined networking app uses sensitive information and investigate suspicious security vulnerabilities of devices and the effects of the spread of taint propagation over the Internet by identifying taint paths. For solving the dynamic taint propagation analysis problem, most approaches focus on cloud computing applications (apps) with malware threat analysis that involves program vulnerability analyses, rather than on the risk posed by suspicious apps connected to the cloud computing server. Accordingly, this article proposes a taint propagation analysis model incorporating a weighted spanning tree analysis scheme for tracking data with taint marking using several taint checking tools with an open software-defined networking architecture for solving the dynamic taint propagation analysis problem. In the proposed model, Android programs perform dynamic taint propagation to analyse the spread of risks posed by suspicious apps connected to the centralised gateway in a smart home system. In probabilistic risk analysis, risk and defence capability are used for each taint path to assist a defender in recognising the attack results against network threats caused by malware infection and to estimate the losses of associated taint sources. A case of threat analysis of a typical cyber security attack is presented to demonstrate the proposed approach. A new approach was used for verifying the details of an attack sequence for malware infection by incorporating a finite state machine to appropriately represent the real dynamic taint propagation analysis situations at various configuration settings and safeguard deployment. The experimental results proved that the threat analysis model enables a defender to convert the spread of taint propagation to loss and estimate the risk of a specific threat using behavioural analysis associated with 60 families of real malware. Consequently, our scheme was significantly effective in predicting the risk and loss of tainted data propagation for security concerns in smart home systems when the number of taint paths associated with the propagation rules discovered through taint analysis was increased.

Wei Zhou,Yan Jia,Yao Yao,Lipeng Zhu,Le Guan,Yuhang Mao,Peng Liu,Yuqing Zhang

DOI: https://doi.org/10.48550/arXiv.1811.03241

2019-06-26

Abstract:A smart home connects tens of home devices to the Internet, where an IoT cloud runs various home automation applications. While bringing unprecedented convenience and accessibility, it also introduces various security hazards to users. Prior research studied smart home security from several aspects. However, we found that the complexity of the interactions among the participating entities (i.e., devices, IoT clouds, and mobile apps) has not yet been systematically investigated. In this work, we conducted an in-depth analysis of five widely-used smart home platforms. Combining firmware analysis, network traffic interception, and blackbox testing, we reverse-engineered the details of the interactions among the participating entities. Based on the details, we inferred three legitimate state transition diagrams for the three entities, respectively. Using these state machines as a reference model, we identified a set of unexpected state transitions. To confirm and trigger the unexpected state transitions, we implemented a set of phantom devices to mimic a real device. By instructing the phantom devices to intervene in the normal entity-entity interactions, we have discovered several new vulnerabilities and a spectrum of attacks against real-world smart home platforms.

Cryptography and Security,Networking and Internet Architecture

Haotian Chi,Qiang Zeng,Xiaojiang Du,Jiaping Yu

DOI: https://doi.org/10.48550/arXiv.1808.02125

2021-01-24

Abstract:A number of Internet of Things (IoTs) platforms have emerged to enable various IoT apps developed by third-party developers to automate smart homes. Prior research mostly concerns the overprivilege problem in the permission model. Our work, however, reveals that even IoT apps that follow the principle of least privilege, when they interplay, can cause unique types of threats, named Cross-App Interference (CAI) threats. We describe and categorize the new threats, showing that unexpected automation, security and privacy issues may be caused by such threats, which cannot be handled by existing IoT security mechanisms. To address this problem, we present HOMEGUARD, a system for appified IoT platforms to detect and cope with CAI threats. A symbolic executor module is built to precisely extract the automation semantics from IoT apps. The semantics of different IoT apps are then considered collectively to evaluate their interplay and discover CAI threats systematically. A user interface is presented to users during IoT app installation, interpreting the discovered threats to help them make decisions. We evaluate HOMEGUARD via a proof-of-concept implementation on Samsung SmartThings and discover many threat instances among apps in the SmartThings public repository. The evaluation shows that it is precise, effective and efficient.

Cryptography and Security

Bin YUAN,Kaimin ZHENG,Jun WAN,Deqing ZOU,Hai JIN

DOI: https://doi.org/10.1360/ssi-2022-0466

2023-01-01

Scientia Sinica Informationis

Abstract:Recently,the vigorous development of Internet of Things technology has rapidly developed smart home applications.Smart home platforms increasingly provide open interfaces for users to implement customized smart home applications(e.g.,device automation control).The possible defects of these open interfaces have also become an important issue affecting the security of smart home systems.In this paper,we study the open interfaces of the SmartThings platform.We identified a series of new vulnerable interfaces and conducted proof-of-concept attacks to demonstrate the security impact of such interfaces.To mitigate this problem,we propose SmartNotify,a tool for identifying malicious smart home applications abusing vulnerable interfaces.Experiment results show the efficiency and effectiveness of SmartNotify.

Wei Zhou,Yan Jia,Yao Yao,Lipeng Zhu,Le Guan,Yuhang Mao,Peng Liu,Yuqing Zhang

2018-01-01

Abstract:Smart home connects tens of home devices into the Internet, running a smart algorithm in the cloud that sends remote commands to the devices. While bringing unprecedented convenience, accessibility, and efficiency, it also introduces safety hazards to users. Prior research studied smart home security from various aspects. However, we found that the complexity of the interactions among the participating entities (device, IoT cloud, and mobile app) has not yet been systematically investigated. In this work, we conducted an in-depth analysis to four widely used smart home solutions. Combining firmware reverse-engineering, network traffic interception, and black-box testing, we distill the general state transitions representing the complex interactions among the three entities. Based on the state machine, we reveal several vulnerabilities that lead to unexpected state transitions. While these minor security flaws appear to be irrelevant, we show that combining them in a surprising way poses serious security or privacy hazards to smart home users. To this end, five concrete attacks are constructed and illustrated. We also discuss the implications of the disclosed attacks in the context of business competition. Finally, we propose some general design suggestions for building a more secure smart home solution.

Xinbo Ban,Ming Ding,Shigang Liu,Chao Chen,Jun Zhang

DOI: https://doi.org/10.1109/jiot.2023.3325851

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Smart homes (SHs) are rapidly evolving to incorporate intelligent features, including environment management, home automation, and human-machine interactions. However, safety and security risks of SHs hinder their wide adoption. Many work attempts to provide defense mechanisms to ensure safety and security against inter-rule vulnerabilities and spoofing attacks. This paper proposes IoTFuzz, a fuzzing framework that dynamically address cyber security and physical safety aspects of SHs through targeted policies. IoTFuzz mutates the inputs from policies, human activities, indoor environment, and reallife outdoor weather conditions. In addition to the binary status of devices, the continuous-value status in SHs is leveraged to perform mutation and simulation. The policies are expressed as temporal logic formulas with time constraints. For largescale testing, IoTFuzz employs digital twins to simulate normal behaviors, outdoor environment impacts, and human activities in SHs. Moreover, IoTFuzz can also intelligently infer rulepolicy correlation based on Natural Language Processing (NLP) techniques. Evaluation of IoTFuzz in a configured SH with 15 rules and 10 pre-defined unique policies demonstrates its effectiveness in revealing the impacts of real-life outdoor environment. The experimental results demonstrate a range of violations, with a maximum of 4154 violations and a minimum of 41 violations observed over an 8-year period under varying weather conditions. IoTFuzz also identifies the potential risks associated with improper human activities, accounting for up to 35.4% of risky situations in SHs.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yulu Qi,Rong Jiang,Yan Jia,Aiping Li

DOI: https://doi.org/10.1109/dsc50466.2020.00017

2020-01-01

Abstract:The essence of Internet security is information security, as more and more industries rely on the Internet, in order to protect the information security of these industries, spawned local area networks (LANs), intranets and so on. With the development of information sensor technology, the Internet of Things (IoT) that interconnects physical devices has emerged. As a unity of computing process and physical process, the Cyberphysical systems (CPS) is the next generation intelligent system which integrates computing, communication and control. CyberPhysical systems cover a wide range of applications, including intelligent transportation systems, telemedicine, smart grids, aerospace, and many other fields, many of which involve critical infrastructure. The APT attacks are typically directed against these critical infrastructures around the world. So, timely and accurate detection APT attacks and take effective defensive measures, it is meaningful to protect the national information security. Although APT attacks seem destructive, their attack process are complex and changeable, in essence, they usually follow certain rules. This paper proposes an APT attack analysis framework based on the APT attack rules and current mainstream detection technologies. The framework iteratively matches the collected data with the cyber security knowledge graph, and implements constraints relies on the cyber security knowledge graph and self-defined attack rules, thereby realizing the current security status of the network in real time.

Hai Lin,Chenglong Li,Jiahai Yang,Zhiliang Wang,Linna Fan,Chenxin Duan

DOI: https://doi.org/10.14722/ndss.2024.24003

2024-01-01

Abstract:Today, smart home platforms are widely used around the world and offer users automation to define their daily routines.However, individual automation rule anomalies and cross-automation threats that exist in different platforms put the smart home in danger.Recent researches focus on detecting these threats of the specific platform and can only cover limited threat plane.To solve these problems, we design a novel system called CP-IoT, which can monitor the execution behavior of the automation and discover the anomalies, as well as hidden risks among them on heterogeneous IoT platforms.Specifically, CP-IoT constructs a centralized, dynamic graph model for portraying the behavior of automation and the state transition.By analyzing two kinds of app pages with different description granularity, CP-IoT extracts the rule execution logic and collects user policy from different platforms.To detect the inconsistent behavior of an automation rule in different platforms, we propose a selflearning method for event fingerprint extraction by clustering the traffic of different platforms collected from the side channel, and an anomaly detection method by checking the rule execution behavior with its specification reflected in the graph model.To detect the cross-rule threats, we formalize each threat type as a symbolic representation and apply the searching algorithm on the graph.We validate the performance of CP-IoT on four platforms.The evaluation shows that CP-IoT can detect anomalies with high accuracy and effectively discover various types of cross-rule threats.

Zhibo Wang,Defang Liu,Yunan Sun,Xiaoyi Pang,Peng Sun,Feng Lin,John C. S. Lui,Kui Ren

DOI: https://doi.org/10.1109/comst.2022.3201557

IF: 35.6

2022-01-01

IEEE Communications Surveys & Tutorials

Abstract:With recent advances in communication technologies and Internet of Things (IoT) infrastructures, home automation (HA) systems have emerged as a new promising paradigm that provides convenient smart-home services to users. However, there exist various security risks during the deployment and application of HA systems, which pose severe security threats to users. On the one hand, traditional IoT security threats (e.g., device intrusion, protocol vulnerabilities, and so on) are inherent to HA systems. On the other hand, as the core of HA systems, the Trigger-Action Programming (TAP) model organizes cloud platforms, local hubs, and smart devices through user-customized rules, but the complex interactions involved bring new challenges to the security of HA systems. These two kinds of security issues have attracted widespread attention from both academia and industry, and explorations on both attack and defense have been made. However, there is not yet a survey that provides a summary of the overall HA systems’ security research. In this paper, we conduct a comprehensive survey of the state-of-the-art literature on HA system security from aspects of attack and defense. We first give a brief introduction to the HA system architecture and present a general workflow of HA systems. Then, we review and classify the relevant attacks based on the HA architecture, with an explicit analysis of vulnerabilities exploited by these attacks. We further elaborate on the security requirements of HA systems and provide detailed descriptions and comparisons of existing defenses methods. Finally, we conclude with a thorough discussion of open issues for future research.

Xuanyu Duan,Mengmeng Ge,Triet Huynh Minh Le,Faheem Ullah,Shang Gao,Xuequan Lu,M. Ali Babar

DOI: https://doi.org/10.1109/prdc53464.2021.00016

2021-12-01

Abstract:Internet of Things (IoT) based applications face an increasing number of potential security risks, which need to be systematically assessed and addressed. Expert-based manual assessment of IoT security is a predominant approach, which is usually inefficient. To address this problem, we propose an automated security assessment framework for IoT networks. Our framework first leverages machine learning and natural language processing to analyze vulnerability descriptions for predicting vulnerability metrics. The predicted metrics are then input into a two-layered graphical security model, which consists of an attack graph at the upper layer to present the network connectivity and an attack tree for each node in the network at the bottom layer to depict the vulnerability information. This security model automatically assesses the security of the IoT network by capturing potential attack paths. We evaluate the viability of our approach using a proof-of-concept smart building system model which contains a variety of real-world IoT devices and poten-tial vulnerabilities. Our evaluation of the proposed framework demonstrates its effectiveness in terms of automatically predicting the vulnerability metrics of new vulnerabilities with more than 90% accuracy, on average, and identifying the most vulnerable attack paths within an IoT network. The produced assessment results can serve as a guideline for cybersecurity professionals to take further actions and mitigate risks in a timely manner.

Adeeb Mansoor Ansari,Mohammed Nazir,Khurram Mustafa

DOI: https://doi.org/10.1109/access.2024.3415632

IF: 3.9

2024-06-25

IEEE Access

Abstract:Smart homes are the most adaptable and utilized application of the IoT. Smart homes enable end users to define and control the automation remotely by defining automation rules. The automation rules interaction results in the defined tasks and activities but also delivers unwanted interactions, which show adverse effects. Their interactions may consist of chained and covert rules interaction, which are hard to trace and identify. Attackers' malicious apps installed in smart homes may leverage rules' adverse effects to compromise smart home security and harm users, such as opening the window at night or when no one is home. To address such issues, we developed an ontology of smart home automation rules to identify such interactions. Prior works failed to provide the complete classification and could not identify all possible rule conflicts. In this work, we proposed the classification of automation rule interactions into five categories and recognized the potential rule conflicts. In addition, the ontology can examine rules interactions against the defined safety policies, providing an extra layer of security. The ontology will aid the designers in better understanding and developing a robust security mechanism at the design phase to resist rules interaction conflicts and their adverse effects. We examine this work on the thirty-five rules formed in the light of prior work test cases and validation. The results show that the proposed work is promising and can efficiently identify all the rule interaction conflicts in the smart home.

computer science, information systems,telecommunications,engineering, electrical & electronic

Xinbo Ban,Ming Ding,Shigang Liu,Chao Chen,Jun Zhang,Yang Xiang

DOI: https://doi.org/10.1007/978-3-030-95484-0_14

2022-01-01

Abstract:The Internet of Things (IoT) networks promote significant convenience in every aspect of our life, including smart vehicles, smart cities, smart homes, etc. With the advancement of IoT technologies, the IoT platforms bring many new features to the IoT devices so that these devices can not only passively monitor the environment (e.g. conventional sensors), but also interact with the physical surroundings (e.g. actuators). In this light, new problems of safety and security arise due to the new features. For instance, the unexpected and undesirable physical interactions might occur among devices, which is known as inter-rule vulnerability. A few work have investigated the inter-rule vulnerability from both cyberspace and physical channels. Unfortunately, only few research papers take advantage of run-time simulation techniques to properly model trigger action environments. Moreover, no simulation platform is capable of modeling primary physical channels and studies the impacts of physical interactions on IoT safety and security. In this paper, we introduce TAESim, a simulation testbed to support reusable simulations in the research of IoT safety and security, especially for the IoT activities in home automation that could involve possibly unexpected interactions. TAESim operates over MATLAB/Simulink and constructs a digital twin for modeling the nature of the trigger-action environment using simulations. It is an open-access platform and can be used by the research community, government, and industry who work toward preventing the safety and security consequences in the IoT ecosystem. In order to evaluate the effectiveness and efficiency of the testbed, we conduct some experiments and the results show that the simulations are completed in a few seconds. We also present two case studies that can report unexpected consequences.

Xuan Dai,Jian Mao,Jiawei Li,Qixiao Lin,Jianwei Liu

DOI: https://doi.org/10.1155/2022/8022033

2022-01-01

Wireless Communications and Mobile Computing

Abstract:As a typical application of Internet of Things (IoT), home automation systems, namely, smart homes, provide a more convenient and intelligent life experience through event recognition, automation control, and remote device access. However, smart home systems have also given rise to new complications for security issues. As an event-driven IoT system, smart home environments are vulnerable to security attacks, and vulnerable devices are far-spread due to the quick development cycles. Attack vectors to smart homes inevitably manifest in abnormal event contexts. In this paper, we propose HomeGuardian, a context-based approach to identify abnormal events in smart homes. In our approach, we extract temporal context and environmental context from system logs, aggregate (embed) these hybrid contexts, and construct a learning-based classifier to identify the abnormal events. We develop a testbed to implement and evaluate our approach.

Yongheng Xing,Liang Hu,Xinqi Du,Zhiqi Shen,Juncheng Hu,Feng Wang

DOI: https://doi.org/10.1109/jiot.2024.3418459

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:The rapid expansion of the Internet of Things (IoT) has led to the development of smart homes and automation systems. Trigger-action programming (TAP) has emerged as a prevalent paradigm used in IoT, facilitating the creation of automation rules. However, with the proliferation of TAP rules, the potential for conflicts between them grows significantly, which results in undesired outcomes or even safety risks. In this article, we propose a context-aware conflict detection framework for TAP rules, called CCDF-TAP, to identify the potential rule conflicts. Specifically, we incorporate external knowledge and context information during the TAP data preprocessing stage, which is conducive to accurately defining the rule conflicts. Then, based on the above information, the conflict types are defined and a conflict graph is constructed, which establishes a unified format for the rule conflict detection task. Finally, we propose a novel algorithm called dual-channel graph attention auto-encoders (DualGAAs) for efficient conflict detection, which takes the conflict graph as the input and excels in accurately identifying conflicts. Extensive experiments conducted on a comprehensive IFTTT data set demonstrate the superiority of DualGAA in detecting conflicts, achieving an exceptional accuracy of 98.85% and an F1 score of 98.91%. The contributions of our study offer a comprehensive end-to-end solution for context-aware conflict detection in TAP rules, thereby significantly enhancing the security and dependability of IoT smart home systems.