Internet service via UAV: user centric comprehensive attack surface analysis

世界中学生文摘 Pub Date : 2021-10-25 DOI:10.1145/3477087.3478379

Sreejesh Sidharthan, A. Ashok, A. Bourgeois

{"title":"Internet service via UAV: user centric comprehensive attack surface analysis","authors":"Sreejesh Sidharthan, A. Ashok, A. Bourgeois","doi":"10.1145/3477087.3478379","DOIUrl":null,"url":null,"abstract":"Usage of Unmanned Aerial Vehicles (UAVs) in civil application domains such as real-time monitoring, wireless internet, remote sensing, delivery of foods, security, and surveillance, and industrial infrastructure inspection has grown rapidly in recent times. The proliferation of UAVs in commercial and civilian use has increased the importance of security in these applications. In this paper, we are exploring the security threats associated with a civilian UAV use case. We are addressing the use case of UAVs providing internet to users and exploring the attack surface of UAV internet scenarios specifically focused on user-level security. We list specific threats associated with UAV internet scenarios and compiles various attack vectors to present a comprehensive attack surface analysis. This research work has identified 4 attack cases for the initial study. 1) Malicious UAV trying to exploit a user through the service. 2) Adversary targeting the legitimate UAV and users connected to the service. 3) User is targeted through malicious entity or a program in the user's device, and 4) External entity or a hacker attacking the user through a UAV communication channel. We are exploring the attack surfaces of the UAV internet use case extending the 4 cases mentioned above.","PeriodicalId":62224,"journal":{"name":"世界中学生文摘","volume":"26 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2021-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"世界中学生文摘","FirstCategoryId":"90","ListUrlMain":"https://doi.org/10.1145/3477087.3478379","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Usage of Unmanned Aerial Vehicles (UAVs) in civil application domains such as real-time monitoring, wireless internet, remote sensing, delivery of foods, security, and surveillance, and industrial infrastructure inspection has grown rapidly in recent times. The proliferation of UAVs in commercial and civilian use has increased the importance of security in these applications. In this paper, we are exploring the security threats associated with a civilian UAV use case. We are addressing the use case of UAVs providing internet to users and exploring the attack surface of UAV internet scenarios specifically focused on user-level security. We list specific threats associated with UAV internet scenarios and compiles various attack vectors to present a comprehensive attack surface analysis. This research work has identified 4 attack cases for the initial study. 1) Malicious UAV trying to exploit a user through the service. 2) Adversary targeting the legitimate UAV and users connected to the service. 3) User is targeted through malicious entity or a program in the user's device, and 4) External entity or a hacker attacking the user through a UAV communication channel. We are exploring the attack surfaces of the UAV internet use case extending the 4 cases mentioned above.

查看原文本刊更多论文

无人机互联网服务:以用户为中心的综合攻击面分析

近年来，无人机在实时监控、无线互联网、遥感、食品配送、安全监控、工业基础设施检查等民用应用领域的应用迅速发展。无人机在商业和民用领域的扩散增加了安全在这些应用中的重要性。在本文中，我们正在探索与民用无人机用例相关的安全威胁。我们正在解决无人机为用户提供互联网的用例，并探索无人机互联网场景的攻击面，特别是专注于用户级安全。我们列出了与无人机互联网场景相关的具体威胁，并汇编了各种攻击向量，以提供全面的攻击面分析。这项研究工作为初步研究确定了4个攻击案例。1)恶意无人机试图通过服务利用用户。2)攻击者以合法无人机和连接到服务的用户为目标。3)通过用户设备中的恶意实体或程序攻击用户;4)外部实体或黑客通过无人机通信通道攻击用户。我们正在扩展上述4个案例，探索无人机互联网用例的攻击面。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

世界中学生文摘

自引率

0.00%

发文量

4051