AoT - Attack on Things: A security analysis of IoT firmware updates

Abstract: IoT devices implement firmware update mechanisms to fix security issues and deploy new features. These mechanisms are often triggered and mediated by mobile companion apps running on the users' smartphones. While it is crucial to update devices, these mechanisms may cause critical security flaws if they are not implemented correctly. Given their relevance, in this paper, we perform a systematic security analysis of the firmware update mechanisms adopted by IoT devices via their companion apps. First, we define… Show more

“…None of these systems are inherently designed with security in mind; rather, they prioritize cost-effectiveness and innovation, often at the expense of security and privacy (Girish et al, 2023). Additionally, the devices themselves have intrinsic limitations, including low storage and computing capacities, along with challenges such as manufacturers' reluctance to provide software/firmware updates (Ibrahim et al, 2023) or the complexity involved in installing updates, even for competent users.…”

Exploring Shifting Patterns in Recent IoT Malware

“…None of these systems are inherently designed with security in mind; rather, they prioritize cost-effectiveness and innovation, often at the expense of security and privacy (Girish et al, 2023). Additionally, the devices themselves have intrinsic limitations, including low storage and computing capacities, along with challenges such as manufacturers' reluctance to provide software/firmware updates (Ibrahim et al, 2023) or the complexity involved in installing updates, even for competent users.…”

Exploring Shifting Patterns in Recent IoT Malware

Enhancing IoT network security through deep learning-powered Intrusion Detection System

A Study of Common Vulnerabilities in IoT Devices