Jumping the Air Gap

Agadakos, Ioannis; Chen, Chien-Ying; Campanelli, Matteo; Anantharaman, Prashant; Hasan, Monowar; Copos, Bogdan; Lepoint, Tancrède; Locasto, Michael E.; Ciocarlie, Gabriela F.; Lindqvist, Ulf

doi:10.1145/3140241.3140252

Cited by 26 publications

(7 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Recently, IoT devices such as smart light bulbs and air purifiers have been introduced into offices [ 45 , 46 , 47 , 48 ]. This means that in a closed network office there may now be additional devices that can be used for air-gap attacks, in addition to the PCs and peripheral devices discussed earlier.…”

Section: Air-gap Attack Techniquesmentioning

confidence: 99%

A Survey on Air-Gap Attacks: Fundamentals, Transport Means, Attack Scenarios and Challenges

Park

Yoo

et al. 2023

Sensors

View full text Add to dashboard Cite

Major public institutions and organizations that handle sensitive data frequently enforce strong security policies by implementing network separation policies that segregates their internal work networks and internet network using air gaps to prevent the leakage of confidential information. Such closed networks have long been considered the most secure technique for protecting data; however, studies have shown that they are no longer effective in providing a safe data protection environment. Research on air-gap attacks remains in its infancy stage. Studies have been conducted to check the method and demonstrate the possibility of transmitting data using various transmission media available within the closed network. These transmission media include optical signals such as HDD LEDs, acoustic signals such as speakers, and the electrical signals of power lines. This paper examines various media used for air-gap attacks by analyzing different techniques and their essential functions, strengths, and limitations. The findings of this survey and the follow-up analysis aim to assist companies and organizations in protecting their information by providing an understanding of air-gap attacks and their current trends.

show abstract

Section: Air-gap Attack Techniquesmentioning

confidence: 99%

A Survey on Air-Gap Attacks: Fundamentals, Transport Means, Attack Scenarios and Challenges

Park

Yoo

et al. 2023

Sensors

View full text Add to dashboard Cite

show abstract

“…Agadakos et al [13] have recently highlighted that one of the key issues with the IoT is that security is solely considered on device and device-to-device levels. They claim that, given the complexity of interactions that happen in the IoT, the approach should be much more holistic.…”

Section: Jumping the Air Gapmentioning

confidence: 99%

“…As a last use case, in [13] the authors show that with their approach it is possible to model transitions and states, allowing them to identify security violations over time. In their example, there is a Roomba Vacuum that should never leave the house, and an OORT Smart Lock capable of closing/opening a garage door to the outside.…”

Section: Jumping the Air Gapmentioning

confidence: 99%

IoT Security Configurability with Security-by-Contract

Giaretta

Dragoni

Massacci

2019

Sensors

View full text Add to dashboard Cite

Cybersecurity is one of the biggest challenges in the Internet of Things (IoT) domain, as well as one of its most embarrassing failures. As a matter of fact, nowadays IoT devices still exhibit various shortcomings. For example, they lack secure default configurations and sufficient security configurability. They also lack rich behavioural descriptions, failing to list provided and required services. To answer this problem, we envision a future where IoT devices carry behavioural contracts and Fog nodes store network policies. One requirement is that contract consistency must be easy to prove. Moreover, contracts must be easy to verify against network policies. In this paper, we propose to combine the security-by-contract (S × C) paradigm with Fog computing to secure IoT devices. Following our previous work, first we formally define the pillars of our proposal. Then, by means of a running case study, we show that we can model communication flows and prevent information leaks. Last, we show that our contribution enables a holistic approach to IoT security, and that it can also prevent unexpected chains of events.

show abstract

“…The imposed high competition between IoT vendors leads to overlooking cybersecurity aspects in order to accelerate the production of devices and reduce their prices. Furthermore, many of the IoT and CPS devices do not have sufficient energy, storage, or computational power to implement up-to-date anti-malware programs and/or sophisticated intrusion defense mechanisms [8]- [11]. In large-scale IoT/CPS networks, there is no distinct boundary between secured and public (i.e., unsecured) domains to enforce security policies on the incoming/outgoing traffic.…”

mentioning

confidence: 99%

“…The lack of per-device defense mechanisms and network-wide security administration open several loopholes for network intrusion and malware infiltration. Even worse, exploiting the high spatial density of devices and direct wireless connectivity (e.g., machine-to-machine and device-to-device communications), the malware infection can stealthily propagate from one device to another and form an epidemic outbreak without being noticed to security administration [8], [12]- [14]. Malware diffusion through the devices can be further accelerated via emerging beyond 5G technologies, such as nonorthogonal multiple access (NOMA) and ultrareliable low-latency communications (URLLCs), which are meant to enhance information dissemination.…”

mentioning

confidence: 99%

Safeguarding the IoT From Malware Epidemics: A Percolation Theory Approach

Zhaikhan

Kishk

ElSawy

et al. 2021

IEEE Internet Things J.

View full text Add to dashboard Cite

The upcoming Internet of Things (IoT) is foreseen to encompass massive numbers of connected devices, smart objects, and cyber-physical systems. Due to the large scale and massive deployment of devices, it is deemed infeasible to safeguard 100% of the devices with state-of-the-art security countermeasures. Hence, large-scale IoT has inevitable loopholes for network intrusion and malware infiltration. Even worse, exploiting the high density of devices and direct wireless connectivity, malware infection can stealthily propagate through susceptible (i.e., unsecured) devices and form an epidemic outbreak without being noticed to security administration. A malware outbreak enables adversaries to compromise a large population of devices, which can be exploited to launch versatile cyber and physical malicious attacks. In this context, we utilize spatial firewalls, to safeguard the IoT from malware outbreak. In particular, spatial firewalls are computationally capable devices equipped with state-of-the-art security and anti-malware programs that are spatially deployed across the network to filter the wireless traffic in order to detect and thwart malware propagation. Using tools from percolation theory, we prove that there exists a critical density of spatial firewalls beyond which malware outbreak is impossible. This, in turn, safeguards the IoT from malware epidemics regardless of the infection/treatment rates. To this end, a tractable upper bound for the critical density of spatial firewalls is obtained. Furthermore, we characterize the relative communications ranges of the spatial firewalls and IoT devices to ensure secure network connectivity. The percentage of devices secured by the firewalls is also characterized.

show abstract

Jumping the Air Gap

Cited by 26 publications

References 13 publications

A Survey on Air-Gap Attacks: Fundamentals, Transport Means, Attack Scenarios and Challenges

A Survey on Air-Gap Attacks: Fundamentals, Transport Means, Attack Scenarios and Challenges

IoT Security Configurability with Security-by-Contract

Safeguarding the IoT From Malware Epidemics: A Percolation Theory Approach

Contact Info

Product

Resources

About