Towards Wireless Spiking of Smart Locks

2022 IEEE Security and Privacy Workshops (SPW) Pub Date : 2022-05-01 DOI:10.1109/spw54247.2022.9833877

A. Mohammed, A. Singh, Gokce Dayanikli, Ryan M. Gerdes, M. Mina, Ming Li

{"title":"Towards Wireless Spiking of Smart Locks","authors":"A. Mohammed, A. Singh, Gokce Dayanikli, Ryan M. Gerdes, M. Mina, Ming Li","doi":"10.1109/spw54247.2022.9833877","DOIUrl":null,"url":null,"abstract":"The rapid growth of the Internet-of-Things (IoT) has made Smart Homes not only possible but popular in our society. While devices such as wireless security cameras, smart locks, etc. can be more convenient than their traditional counterparts, and may even lead to an increased sense of security, they may actually cause an increase in the attack surface of a home. For example, successful cyber attacks against these smart devices has been extensively documented in the literature. In contrast to existing work we discuss the vulnerabilities of these devices from a cyber-physical perspective; specifically, the threat posed by intentional electromagnetic interference (IEMI). In this paper, we present a methodology to carry out ‘wireless spiking’ attacks on smart lock devices that would allow an unauthenticated adversary to open a lock, without direct physical tampering, through the manipulation of its electrical control circuitry using IEMI. We demonstrate the proposed methodology—reverse engineering, identification of attack points, development of an attack vector, and design and transmission of attack signals—on a commercially popular smart lock. In doing so we lay the groundwork for wireless spiking attacks on smart locks, in general.","PeriodicalId":334852,"journal":{"name":"2022 IEEE Security and Privacy Workshops (SPW)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE Security and Privacy Workshops (SPW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/spw54247.2022.9833877","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

The rapid growth of the Internet-of-Things (IoT) has made Smart Homes not only possible but popular in our society. While devices such as wireless security cameras, smart locks, etc. can be more convenient than their traditional counterparts, and may even lead to an increased sense of security, they may actually cause an increase in the attack surface of a home. For example, successful cyber attacks against these smart devices has been extensively documented in the literature. In contrast to existing work we discuss the vulnerabilities of these devices from a cyber-physical perspective; specifically, the threat posed by intentional electromagnetic interference (IEMI). In this paper, we present a methodology to carry out ‘wireless spiking’ attacks on smart lock devices that would allow an unauthenticated adversary to open a lock, without direct physical tampering, through the manipulation of its electrical control circuitry using IEMI. We demonstrate the proposed methodology—reverse engineering, identification of attack points, development of an attack vector, and design and transmission of attack signals—on a commercially popular smart lock. In doing so we lay the groundwork for wireless spiking attacks on smart locks, in general.

查看原文本刊更多论文

迈向智能锁的无线峰值

物联网(IoT)的快速发展使智能家居不仅成为可能，而且在我们的社会中流行起来。虽然无线安全摄像头、智能锁等设备比传统设备更方便，甚至可能增加安全感，但它们实际上可能导致家庭受攻击面增加。例如，针对这些智能设备的成功网络攻击已在文献中广泛记录。与现有的工作相反，我们从网络物理的角度讨论了这些设备的漏洞;具体来说，是故意电磁干扰(IEMI)造成的威胁。在本文中，我们提出了一种对智能锁设备进行“无线尖峰”攻击的方法，该方法允许未经身份验证的对手通过使用IEMI操纵其电气控制电路，在没有直接物理篡改的情况下打开锁。我们在一个商业上流行的智能锁上展示了所提出的方法——逆向工程、攻击点的识别、攻击向量的开发以及攻击信号的设计和传输。这样一来，我们就为智能锁的无线尖峰攻击奠定了基础。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 IEEE Security and Privacy Workshops (SPW)

自引率

0.00%

发文量