A Defense Mechanism for Timing-based Side-Channel Attacks on IoT Traffic

Prates, Nelson G.; Vergütz, Andressa; Macedo, Ricardo; Santos, Aldri; Nogueira, Michele

doi:10.1109/globecom42002.2020.9322070

Cited by 13 publications

(4 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Our technique does not consider timing characteristics, such as the interarrival time. However, the issue of timing leakage has been addressed by delaying the data packets to obscure the related patterns [8]. This approach can be integrated with our defense to effectively conceal both the timing and the length features.…”

Section: Discussionmentioning

confidence: 99%

“…For example, to address the packet-size leakage, the current traffic shaping methods mainly pad packets with additional bytes to obscure the related characteristics [7]. Regarding the timing side-channel, which falls outside the scope of this paper, adding a random packet delay has been employed as a means to prevent such information leakage [8]. Obviously, both countermeasures introduce data and time overhead.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

MAC-Layer Traffic Shaping Defense Against WiFi Device Fingerprinting Attacks

Alyami

Alkhowaiter

Ghanim

et al. 2022

2022 IEEE Symposium on Computers and Communications (ISCC)

View full text Add to dashboard Cite

Despite encryption, the packet size is still visible, enabling observers to infer private information in the Internet of Things (IoT) environment (e.g., IoT device identification). Packet padding obfuscates packet-length characteristics with a high data overhead because it relies on adding noise to the data. This paper proposes a more data-efficient approach that randomizes packet sizes without adding noise. We achieve this by splitting large TCP segments into randomsized chunks; hence, the packet length distribution is obfuscated without adding noise data. Our client-server implementation using TCP sockets demonstrates the feasibility of our approach at the application level. We realize our packet size control by adjusting two local socket-programming parameters. First, we enable the TCP_NODELAY option to send out each packet with our specified length. Second, we downsize the sending buffer to prevent the sender from pushing out more data than can be received, which could disable our control of the packet sizes. We simulate our defense on a network trace of four IoT devices and show a reduction in device classification accuracy from 98% to 63%, close to random guessing. Meanwhile, the real-world data transmission experiments show that the added latency is reasonable, less than 21%, while the added packet header overhead is only about 5%.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

MAC-Layer Traffic Shaping Defense Against WiFi Device Fingerprinting Attacks

Alyami

Alkhowaiter

Ghanim

et al. 2022

2022 IEEE Symposium on Computers and Communications (ISCC)

View full text Add to dashboard Cite

show abstract

“…Various methods can be selected to achieve a certain desired result. The authors in [ 83 ] propose a defense mechanism against timing-based side-channel attacks to response time on the Internet of Things. This mechanism follows two modules, vulnerability testing and privacy protection.…”

Section: Review Of Selected Studiesmentioning

confidence: 99%

A Review of Attacks, Vulnerabilities, and Defenses in Industry 4.0 with New Challenges on Data Sovereignty Ahead

Pedreira

Barros

Pinto

2021

Sensors

View full text Add to dashboard Cite

The concepts brought by Industry 4.0 have been explored and gradually applied.The cybersecurity impacts on the progress of Industry 4.0 implementations and their interactions with other technologies require constant surveillance, and it is important to forecast cybersecurity-related challenges and trends to prevent and mitigate these impacts. The contributions of this paper are as follows: (1) it presents the results of a systematic review of industry 4.0 regarding attacks, vulnerabilities and defense strategies, (2) it details and classifies the attacks, vulnerabilities and defenses mechanisms, and (3) it presents a discussion of recent challenges and trends regarding cybersecurity-related areas for Industry 4.0. From the systematic review, regarding the attacks, the results show that most attacks are carried out on the network layer, where dos-related and mitm attacks are the most prevalent ones. Regarding vulnerabilities, security flaws in services and source code, and incorrect validations in authentication procedures are highlighted. These are vulnerabilities that can be exploited by dos attacks and buffer overflows in industrial devices and networks. Regarding defense strategies, Blockchain is presented as one of the most relevant technologies under study in terms of defense mechanisms, thanks to its ability to be used in a variety of solutions, from Intrusion Detection Systems to the prevention of Distributed dos attacks, and most defense strategies are presented as an after-attack solution or prevention, in the sense that the defense mechanisms are only placed or thought, only after the harm has been done, and not as a mitigation strategy to prevent the cyberattack. Concerning challenges and trends, the review shows that digital sovereignty, cyber sovereignty, and data sovereignty are recent topics being explored by researchers within the Industry 4.0 scope, and GAIA-X and International Data Spaces are recent initiatives regarding data sovereignty. A discussion of trends is provided, and future challenges are pointed out.

show abstract

“…Em todos esses casos, é de extrema importância garantir a disponibilidade, a privacidade e a transmissão confidencial dos dados do usuário, do ambiente e das aplicações a um repositório centralizado de dados/nuvem de processamento [Datta et al 2018, Hafeez et al 2020, Nakayama et al 2019, Nogueira et al 2009]. Por exemplo, diferentes tipos de sensores geram tráfego de dados característico, que pode ser detectado no meio de outras transmissões e usado para estimar o tipo específico de monitoramento realizado em um determinado indivíduo e outras informações importantes [Dong et al 2019, Trimananda et al 2020, Al-Shawabka et al 2020, Prates et al 2020, Tahaei et al 2020]. Esse tipo de vazamento de privacidade do usuário ocorre por meio da análise do tráfego de dados gerado pelos sensores.…”

Section: Introductionunclassified

Das Redes Vestíveis aos Sistemas Ciber-Humanos: Uma Perspectiva na Comunicação e Privacidade dos Dados

Nogueira¹,

Borges²,

Nakayama³

2021

Minicursos Do XXXIX Simpósio Brasileiro De Redes De Computadores E Sistemas Distribuídos

Self Cite

View full text Add to dashboard Cite

Cyber-physical and cyber-human systems have different characteristics from existing networks, including security properties and vulnerabilities from those found in traditional systems and networks. These systems require a high level of interoperability between devices and subsystems, predictability to allow control and they are subject to a broader range of attack models. With the evolution and popularization of cyber-physical and cyber-human systems, new security threats are emerging or increasing all the time. Data privacy and the guarantee of the availability of services need to be systematically investigated in this context. This short course contributes in this direction, attracting, at first, attention to the rapid evolution that has been taking place from the beginnings of wearable networks to cutting-edge research in nanonetworks. This rapid evolution underlies the construction of cyber-physical and cyber-human systems that have applications in several areas that will be explored in this short course. ResumoOs sistemas ciberfísicos e ciber-humanos possuem características diferentes das redes existentes, incluindo propriedades e vulnerabilidades de segurança diversas daquelas encontradas nos sistemas e redes tradicionais. Esses sistemas requerem um alto nível de interoperabilidade entre dispositivos e subsistemas, maior previsibilidade para permitir seu controle e estão sujeitos a um maior grupo de modelos de ataques. Com a evolução e a popularização dos sistemas ciberfísicos e ciber-humanos, novas ameaças de segurança emergem ou são potencializadas a todo momento. A privacidade dos dados e a garantia de disponibilidade dos serviços são questões que precisam ser investigadas de forma sistemática nesse contexto. Este minicurso contribui nesta direção atraindo, em um primeiro momento, a atenção para a rápida evolução que vem ocorrendo desde os primórdios das redes vestíveis até a pesquisa de ponta em nanorredes. Essa evolução rápida fundamenta a construção dos sistemas ciberfísicos e ciber-humanos que possuem aplicações em diversas áreas, exploradas neste minicurso.

show abstract

A Defense Mechanism for Timing-based Side-Channel Attacks on IoT Traffic

Cited by 13 publications

References 12 publications

MAC-Layer Traffic Shaping Defense Against WiFi Device Fingerprinting Attacks

MAC-Layer Traffic Shaping Defense Against WiFi Device Fingerprinting Attacks

A Review of Attacks, Vulnerabilities, and Defenses in Industry 4.0 with New Challenges on Data Sovereignty Ahead

Das Redes Vestíveis aos Sistemas Ciber-Humanos: Uma Perspectiva na Comunicação e Privacidade dos Dados

Contact Info

Product

Resources

About