CPS: Medium: Detecting and Controlling Unwanted Data Flows in the Internet of Things

CPS：中：检测和控制物联网中不需要的数据流

基本信息

批准号：
1739809
负责人：
Nicholas Feamster
金额：
$ 92.38万
依托单位：
Princeton University
依托单位国家：
美国
项目类别：
Cooperative Agreement
财政年份：
2018
资助国家：
美国
起止时间：
2018-10-01 至 2019-12-31
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=1739809&HistoricalAwards=false
关键词：
CPS Medium Detecting Controlling Unwanted

项目摘要

Many emerging Internet-connected devices are not personal computers. They are special-purpose commodity consumer electronic devices such as, for example, smart thermostats and smart door locks. Collectively, these devices are known as the Internet of Things (IoT). They are increasingly used in smart homes, smart cities, intelligent transportation systems, industrial networks and more. The promise of IoT is to improve the quality of everyday life and make society more productive.IoT devices however are not without technological and societal risk. The technological risk derives in part from software and security vulnerabilities. The vast diversity and number of IoT devices make overall consistency problematic and contribute to various inefficiencies. There are risks over the life cycle of some deployed IoT devices that their software may never be patched and their hardware never repaired; i.e., these devices will effectively remain vulnerable indefinitely. The societal risk derives in part from the massive data that is now possible to collect using IoT devices from most anywhere, which violate privacy norms. Moreover, compromised IoT devices might serve as a large-scale highly distributed platform to flood the Internet, disrupting many vital services for society.This project develops technologies that ensure that IoT deployments remain secure and protect user privacy in the face of the widespread deployment of connected smart devices. Network-based defenses against common attacks and device owners' ability to inspect, audit, control and share data are essential capabilities to mitigating technological and societal risks. This project focuses: (1) protecting the devices from vulnerabilities that are often introduced through the use of untrusted software libraries, (2) detecting when devices exhibit anomalous behavior that would suggest an unauthorized data leak or device compromise, relying on statistical anomaly detection of network traffic patterns, and (3) controlling unwanted data leaks and attacks in the network using network firewall rules, outputs from these anomaly detection systems, and software systems that let the owners of these devices inspect and determine the data sent and received. This project advances the theory and practice of network traffic analysis, anomaly detection, and secure segmentation of networks that ensure IoT deployments remain secure despite insecure connected devices.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

许多新兴互联网连接的设备不是个人计算机。它们是特殊的商品消费电子设备，例如智能恒温器和智能门锁。总的来说，这些设备被称为物联网（IoT）。它们越来越多地用于智能家居，智能城市，智能运输系统，工业网络等。物联网的承诺是提高日常生活的质量并使社会提高生产力。iot设备并非没有技术和社会风险。技术风险部分来自软件和安全漏洞。物联网设备的巨大多样性和数量使总体一致性有问题，并导致各种效率低下。在某些部署的IoT设备的生命周期中，存在风险，即它们的软件可能永远不会修补，并且硬件永远无法修复；即，这些设备将有效地无限期地保持脆弱性。社会风险部分源自大量数据，这些数据现在可以从大多数地方使用IoT设备收集，这违反了隐私规范。此外，受损害的物联网设备可能是一个大规模分布的大规模分布式平台，以淹没互联网，破坏了许多对社会的重要服务。该项目开发了技术，以确保物联网部署保持安全并在面对广泛部署的情况下保持安全并保护用户隐私连接的智能设备。基于网络的防御能力和设备所有者检查，审核，控制和共享数据的能力是减轻技术和社会风险的重要功能。该项目的重点是：（1）保护设备免受通常通过使用不受信任的软件库引入的漏洞，（2）检测设备何时表现出异常行为，暗示未经授权的数据泄漏或设备损害，并依赖于统计的统计无机检测网络流量模式，以及（3）使用网络防火墙规则，这些异常检测系统的输出以及使这些设备所有者检查并确定发送和接收的数据的软件系统，控制网络中有害的数据泄漏和攻击。该项目推进了网络流量分析，异常检测的理论和实践以及对网络的安全细分，以确保IOT部署保持安全，尽管没有安全感连接的设备。该奖项反映了NSF的法定任务，并被认为是值得通过基金会的知识分子进行评估来支持的优点和更广泛的影响审查标准。