Chanoksuda Wongvises, A. Khurat, Doudou Fall, S. Kashihara
{"title":"基于故障树分析的智能家居风险量化","authors":"Chanoksuda Wongvises, A. Khurat, Doudou Fall, S. Kashihara","doi":"10.1109/INCIT.2017.8257865","DOIUrl":null,"url":null,"abstract":"A smart home is a new enabling innovative appliance domain that is developed from the rapid growth of the Internet of Things. Despite its popularity and evident usefulness for human beings, smart homes have numerous security issues that originate from the heterogeneous, wide-scale and complex structure of the Internet of Things. It is obvious that a risk assessment is needed in order to ensure the security of smart homes. We propose a security risk quantification technique that permits to have a measure of the level of security of a given smart home based on the ‘things’ that it is composed of. Our method is based on Fault Tree Analysis which is the de-facto tool used in mission-critical systems. At first, we generated an exhaustive security tree based on the general architecture of a smart home. Afterwards, we evaluated our proposal in a use case of successful attacks on a light bulb system that functions through the ZigBee protocol. We were able to demonstrate that the risk of a successful attack in that system is very high given the same conditions.","PeriodicalId":405827,"journal":{"name":"2017 2nd International Conference on Information Technology (INCIT)","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Fault tree analysis-based risk quantification of smart homes\",\"authors\":\"Chanoksuda Wongvises, A. Khurat, Doudou Fall, S. Kashihara\",\"doi\":\"10.1109/INCIT.2017.8257865\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A smart home is a new enabling innovative appliance domain that is developed from the rapid growth of the Internet of Things. Despite its popularity and evident usefulness for human beings, smart homes have numerous security issues that originate from the heterogeneous, wide-scale and complex structure of the Internet of Things. It is obvious that a risk assessment is needed in order to ensure the security of smart homes. We propose a security risk quantification technique that permits to have a measure of the level of security of a given smart home based on the ‘things’ that it is composed of. Our method is based on Fault Tree Analysis which is the de-facto tool used in mission-critical systems. At first, we generated an exhaustive security tree based on the general architecture of a smart home. Afterwards, we evaluated our proposal in a use case of successful attacks on a light bulb system that functions through the ZigBee protocol. We were able to demonstrate that the risk of a successful attack in that system is very high given the same conditions.\",\"PeriodicalId\":405827,\"journal\":{\"name\":\"2017 2nd International Conference on Information Technology (INCIT)\",\"volume\":\"9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 2nd International Conference on Information Technology (INCIT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INCIT.2017.8257865\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 2nd International Conference on Information Technology (INCIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INCIT.2017.8257865","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Fault tree analysis-based risk quantification of smart homes
A smart home is a new enabling innovative appliance domain that is developed from the rapid growth of the Internet of Things. Despite its popularity and evident usefulness for human beings, smart homes have numerous security issues that originate from the heterogeneous, wide-scale and complex structure of the Internet of Things. It is obvious that a risk assessment is needed in order to ensure the security of smart homes. We propose a security risk quantification technique that permits to have a measure of the level of security of a given smart home based on the ‘things’ that it is composed of. Our method is based on Fault Tree Analysis which is the de-facto tool used in mission-critical systems. At first, we generated an exhaustive security tree based on the general architecture of a smart home. Afterwards, we evaluated our proposal in a use case of successful attacks on a light bulb system that functions through the ZigBee protocol. We were able to demonstrate that the risk of a successful attack in that system is very high given the same conditions.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
