EAGER: USBRCCR: Collaborative: Lightweight Policy Enforcement of Information Flows in IoT Infrastructures

EAGER:USBRCCR:协作:物联网基础设施中信息流的轻量级策略执行

基本信息

项目摘要

As Internet of Things (IoT) systems become deployed more widely, their security is becoming a serious concern in many domains, including smart homes, autonomous cars, or industrial control systems. Security exploits in IoT systems can lead to loss of privacy, data theft, financial losses, and even physical harm. The proposed work will develop a novel approach to harden security of IoT systems via cross-layer defense. The approach will be developed and evaluated in collaboration among three participating institutions in the US and Brazil. The project aims to provide technical foundations to harden the defense against several types of security attacks in IoT systems, and the project will also create broader impact through dissemination of results and education efforts.More technically, the proposed approach considers cross-layer defense at IoT app layer, network layer, and devices. The central concept is flow policies: the proposed work extracts flow policies from IoT apps, and then uses these policies to enforce desired flows and to detect violations at both the device and network layers. In contrast to general-purpose applications, the flows in IoT apps are expected to be often predictable and expressive enough to capture important properties such that detected flow violations indicate real problems and not false alarms. If policies are indeed found to be expressive enough, and checking them is lightweight in IoT systems, the approach will provide substantial benefits to improve defense of IoT systems in practice.
随着物联网(IoT)系统的部署越来越广泛,其安全性在许多领域都成为一个严重的问题,包括智能家居、自动驾驶汽车或工业控制系统。物联网系统中的安全漏洞可能会导致隐私丢失、数据被盗、财务损失,甚至造成人身伤害。这项工作将开发一种新的方法,通过跨层防御来加强物联网系统的安全性。该方法将由美国和巴西的三家参与机构共同开发和评估。该项目旨在为加强对物联网系统中几种类型的安全攻击的防御提供技术基础,该项目还将通过成果传播和教育工作产生更广泛的影响。从更严格的技术角度来看,该方法考虑了物联网应用层、网络层和设备的跨层防御。核心概念是流策略:提议的工作从物联网应用程序中提取流策略,然后使用这些策略来强制执行所需的流并检测设备层和网络层的违规行为。与通用应用程序不同,物联网应用程序中的流通常具有足够的可预测性和表现力,可以捕获重要属性,以便检测到的流违规行为表明存在真正的问题,而不是虚假警报。如果确实发现策略具有足够的表现力,并且在物联网系统中检查它们是轻量级的,那么这种方法将在实践中为改进物联网系统的防御提供实质性的好处。

项目成果

期刊论文数量(9)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
Securing IoT Apps with Fine-grained Control of Information Flows
通过信息流的细粒度控制来保护物联网应用程序
Tyche: A Risk-Based Permission Model for Smart Homes
Tyche:智能家居基于风险的权限模型
  • DOI:
    10.1109/secdev.2018.00012
  • 发表时间:
    2018
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Rahmati, Amir;Fernandes, Earlence;Eykholt, Kevin;Prakash, Atul
  • 通讯作者:
    Prakash, Atul
Open Source Vulnerability Notification
开源漏洞通知
  • DOI:
    10.1007/978-3-030-20883-7_2
  • 发表时间:
    2019
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Carlson, Brandon;Leach, Kevin;Marinov, Darko;Nagappan, Meiyappan;Prakash, Atul
  • 通讯作者:
    Prakash, Atul
Physical Adversarial Examples for Object Detectors
  • DOI:
  • 发表时间:
    2018-07
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Kevin Eykholt;I. Evtimov;Earlence Fernandes;Bo Li;Amir Rahmati;Florian Tramèr;Atul Prakash;
  • 通讯作者:
    Kevin Eykholt;I. Evtimov;Earlence Fernandes;Bo Li;Amir Rahmati;Florian Tramèr;Atul Prakash;
{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Atul Prakash其他文献

Long-term outcome of dual site right atrial pacing in patients with drug-refractory paroxysmal versus persistent or permanent atrial fibrillation
  • DOI:
    10.1016/s0735-1097(02)80361-8
  • 发表时间:
    2002-03-06
  • 期刊:
  • 影响因子:
  • 作者:
    Sanjeev Saksena;Wen H. Lin;Atul Prakash;Artur Filipecki
  • 通讯作者:
    Artur Filipecki
Leveraging Hierarchical Feature Sharing for Efficient Dataset Condensation
利用分层特征共享实现高效数据集压缩
  • DOI:
    10.48550/arxiv.2310.07506
  • 发表时间:
    2023
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Haizhong Zheng;Jiachen Sun;Shutong Wu;B. Kailkhura;Z. Mao;Chaowei Xiao;Atul Prakash
  • 通讯作者:
    Atul Prakash
1008-14 Radiofrequency Catheter Ablation of Left-sided Accessory Pathways: Selection of Coronary Sinus as the Primary Approach
  • DOI:
    10.1016/0735-1097(95)92953-3
  • 发表时间:
    1995-02-01
  • 期刊:
  • 影响因子:
  • 作者:
    Irakli Giorgberidze;Ryszard B. Krol;Atul Prakash;Philip Mathew;Sanjeev Saksena.
  • 通讯作者:
    Sanjeev Saksena.
COEXISTING BAG3 VARIANT AND ANOMALOUS ORIGIN OF RIGHT CORONARY ARTERY PRESENTING WITH RECURRENT VENTRICULAR TACHYCARDIA
  • DOI:
    10.1016/s0735-1097(23)02899-1
  • 发表时间:
    2023-03-07
  • 期刊:
  • 影响因子:
  • 作者:
    Ilsen E. Hernandez;Atul Prakash
  • 通讯作者:
    Atul Prakash
GRAPHITE: A Practical Framework for Generating Automatic Physical Adversarial Machine Learning Attacks
GRAPHITE:生成自动物理对抗性机器学习攻击的实用框架
  • DOI:
  • 发表时间:
    2021
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Ryan Feng;Neal Mangaokar;Jiefeng Chen;Earlence Fernandes;S. Jha;Atul Prakash
  • 通讯作者:
    Atul Prakash

Atul Prakash的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Atul Prakash', 18)}}的其他基金

EAGER: SaTC-EDU: Identifying Educational Conceptions and Challenges in Cybersecurity and Artificial Intelligence
EAGER:SaTC-EDU:确定网络安全和人工智能的教育理念和挑战
  • 批准号:
    2039445
  • 财政年份:
    2020
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
CPS: Synergy: Collaborative Research: Support for Security and Safety of Programmable IoT Systems
CPS:协同:协作研究:支持可编程物联网系统的安全性
  • 批准号:
    1646392
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
TWC: Small: Discovering and Restricting Undesirable Information Flows Between Multiple Spheres of Activities
TWC:小型:发现并限制多个活动领域之间的不良信息流
  • 批准号:
    1318722
  • 财政年份:
    2013
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
TC: Small: Capsule: Safely Accessing Confidential Data in a Low-Integrity Environment
TC:小:胶囊:在低完整性环境中安全访问机密数据
  • 批准号:
    0916126
  • 财政年份:
    2009
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
RI: An Infrastructure for Wide Area Pervasive Computing
RI:广域普适计算的基础设施
  • 批准号:
    0303587
  • 财政年份:
    2003
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Continuing Grant
ITR: A Mobile Component Framework for Building Adaptive Distributed Applications
ITR:用于构建自适应分布式应用程序的移动组件框架
  • 批准号:
    0082851
  • 财政年份:
    2000
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Continuing Grant
Distributed Simulation of Large Systems
大型系统的分布式仿真
  • 批准号:
    8909674
  • 财政年份:
    1989
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant

相似海外基金

EAGER: USBRCCR: Collaborative: Lightweight Policy Enforcement of Information Flows in IoT Infrastructures
EAGER:USBRCCR:协作:物联网基础设施中信息流的轻量级策略执行
  • 批准号:
    1740916
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
EAGER: USBRCCR: Collaborative: Securing Networks in the Programmable Data Plane Era
EAGER:USBRCCR:协作:确保可编程数据平面时代的网络安全
  • 批准号:
    1740791
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
EAGER: USBRCCR: Collaborative: Securing Networks in the Programmable Data Plane Era
EAGER:USBRCCR:协作:确保可编程数据平面时代的网络安全
  • 批准号:
    1740911
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
EAGER: USBRCCR: HealthSense: Assessing and Protecting Privacy in Wireless Wearable Sensor-Generated Medical Data
EAGER:USBRCCR:HealthSense:评估和保护无线可穿戴传感器生成的医疗数据中的隐私
  • 批准号:
    1740907
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
EAGER: USBRCCR: Improving Network Security at the Network Edge
EAGER:USBRCCR:提高网络边缘的网络安全性
  • 批准号:
    1740895
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
EAGER: USBRCCR: Researching Internet Routing Security in the Wild
EAGER:USBRCCR:野外研究互联网路由安全
  • 批准号:
    1740883
  • 财政年份:
    2017
  • 资助金额:
    $ 16.37万
  • 项目类别:
    Standard Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了