Analyzing the Security and Privacy of Cloud-based Video Surveillance Systems

Obermaier, Johannes; Hutle, Martin

doi:10.1145/2899007.2899008

Cited by 56 publications

(34 citation statements)

References 5 publications

(4 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, research has shown that-by taking advantage of hardware or protocol flaws-attackers can exploit man-in-the-middle attacks to intercept communications from and to wearable devices to steal personal information, invading user's privacy and exposing them to the risk of identity theft [7]. Attackers can also take advantage of the weak authentication and encryption protocols used in many cameras enabling them to eavesdrop on camera streams [8], again raising privacy concerns and creating opportunities for crime [9]. Such concerns may impede consumer confidence in, and the uptake of, the benefits the IoT promises to deliver [4].…”

Section: Introductionmentioning

confidence: 99%

The impact of IoT security labelling on consumer product choice and willingness to pay

et al. 2020

View full text Add to dashboard Cite

The Internet of Things (IoT) brings internet connectivity to everyday electronic devices (e.g. security cameras and smart TVs) to improve their functionality and efficiency. However, serious security and privacy concerns have been raised about the IoT which impact upon consumer trust and purchasing. Moreover, devices vary considerably in terms of the security they provide, and it is difficult for consumers to differentiate between more and less secure devices. One proposal to address this is for devices to carry a security label to help consumers navigate the market and know which devices to trust, and to encourage manufacturers to improve security. Using a discrete choice experiment, we estimate the potential impact of such labels on participant's purchase decision making, along with device functionality and price. With the exception of a label that implied weak security, participants were significantly more likely to select a device that carried a label than one that did not. While they were generally willing to pay the most for premium functionality, for two of the labels tested, they were prepared to pay the same for security and functionality. Qualitative responses suggested that participants would use a label to inform purchasing decisions, and that the labels did not generate a false sense of security. Our findings suggest that the use of a security label represents a policy option that could influence behaviour and that should be seriously considered.

show abstract

Section: Introductionmentioning

confidence: 99%

The impact of IoT security labelling on consumer product choice and willingness to pay

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Recently, in a research by Obermaier and Hutle [12] provided a practical analysis of the security and privacy of four major cloud-based video surveillance systems. They reverseengineered the security implementation and discovered several vulnerabilities in every of the tested systems.…”

Section: Related Work 21 Related Work On Building Burglary and Theftmentioning

confidence: 99%

Re-engineering Real-time Intrusion and Burglary Detection using Fuzzy Technique

Mohammed¹,

Ikerionwu²,

Chinenye³

2020

IJCA

View full text Add to dashboard Cite

The alarming rate of burglary and theft across the country, which has drawn societal security concerns, increased individual and government spending in protection of lives and properties, necessitated the urgent need to design and implement an automated building intrusion and theft detection system. In this paper, a burglary and theft detection system using Fuzzy Logic and Short Message Service (SMS) system that will detect intruders and report this crime on a real-time was realized. The design approach combines the acquisition of vibration signal obtained from the burgles/intruder(s) by microcontroller-based accelerometer, intrusion detection logic built on the Fuzzy Inference System installed and configured on a cloud infrastructure with an alerting system which communicates on a real time basis to the appropriate authorities of an intrusion/burglary. This phenomenal innovation and breakthrough in intrusion detection systems will bring about the detection and prosecution of intruders/burglars and thieves in the societythus reducing the level of crime.

show abstract

“…Several works have shown how a potential attacker can gain accurate insights on users' activity and data. Sensitive information can be gathered by installing a Man-in-the-Middle (MitM) malware that re-transmits data [2,3], or by eavesdropping packets exchanged on a shared network channel [4]. Network engineers have thus been designing encryption strategies to prevent third party users from accessing the transmitted information (e.g., SSL/TLS).…”

Section: Introductionmentioning

confidence: 99%

Looking Through Walls: Inferring Scenes from Video-Surveillance Encrypted Traffic

Mari

Piazzetta

Bordin

et al. 2021

ICASSP 2021 - 2021 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP)

View full text Add to dashboard Cite

Nowadays living environments are characterized by networks of interconnected sensing devices that accomplish different tasks, e.g., video surveillance of an environment by a network of CCTV cameras. A malicious user could gather sensitive details on people's activities by eavesdropping the exchanged data packets. To overcome this problem, video streams are protected by encryption systems, but even secured channels may still leak some information. In this paper, we show that it is possible to infer visual data by intercepting the encrypted video stream of a surveillance system, and how this may be leveraged to track the movements of a person inside the secured area. We trained an automatic classifier on a computer graphic simulator and tested it on real videos, with standard encryption protocols. Experiments proved the transferability of the classifier trained on synthetic sequences, succeeding in the detection of up to four different walking directions on real videos, with a limited amount of intercepted traffic.

show abstract

Analyzing the Security and Privacy of Cloud-based Video Surveillance Systems

Cited by 56 publications

References 5 publications

The impact of IoT security labelling on consumer product choice and willingness to pay

The impact of IoT security labelling on consumer product choice and willingness to pay

Re-engineering Real-time Intrusion and Burglary Detection using Fuzzy Technique

Looking Through Walls: Inferring Scenes from Video-Surveillance Encrypted Traffic

Contact Info

Product

Resources

About