Practical Integrity Validation in the Smart Home with HomeEndorser

Kaushal Kafle, Kirti Jagtap, Mansoor Ahmed-Rengers, Trent Jaeger, Adwait Nadkarni

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Modern smart home platforms facilitate home automation using trigger-action routines. While providing flexibility, routines may also cause serious threats to system integrity: untrusted third-parties may use platform APIs to modify the abstract home objects (AHOs) that high-integrity devices (e.g., security camera) rely on (i.e., as triggers). As most AHO accesses are legitimate, applying naive information flow controls or removing permissions would not only fail to prevent these problems, but also break functionality. Therefore, this paper proposes the alternate approach of home abstraction endorsement, which endorses a proposed AHO change by correlating it with expected environmental changes. We present the HomeEndorser framework, which provides a policy model to express changes in device states as endorsement policy templates that are automatically instantiated in a given configuration (based on device availability/placement), and a platform-based reference monitor to mediate all API requests to change AHOs. We implement HomeEndorser as an enhancement to the HomeAssistant platform, and demonstrate less than 10% performance overhead and no false alarms under realistic usage, as well as derive policy templates for 6 key AHOs.

Original languageEnglish (US)
Title of host publicationWiSec 2024 - Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks
PublisherAssociation for Computing Machinery, Inc
Pages207-218
Number of pages12
ISBN (Electronic)9798400705823
DOIs
StatePublished - May 27 2024
Event17th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2024 - Seoul, Korea, Republic of
Duration: May 27 2024May 29 2024

Publication series

NameWiSec 2024 - Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks

Conference

Conference17th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2024
Country/TerritoryKorea, Republic of
CitySeoul
Period5/27/245/29/24

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Computer Science Applications
  • Information Systems
  • Software
  • Safety Research

Cite this