Scalable analysis of interaction threats in IoT systems

“…We evaluated our models with an experimental study performed over models of 222 real-world smart home apps for Samsung Smart-Things. These app models were automatically extracted from the source code of the applications by applying static analysis as described by Alhanahnah, et al [2], to extract an inter-procedural control flow graph (ICFG) from each app and translate the relevant nodes from the ICFG into the triggers, conditions, and actions defining the models for the rules of the app. Our evaluation addresses the following research questions:…”

“…To compare the two approaches, we used the Alloy Analyzer [20] to generate counterexamples for safety properties for seven types of possible interactions between co-located apps in a smart home IoT system. The definitions of these safety properties were adapted from prior work [2,11,13,31]. We translated each safety property into a pair of assertions-one for the state-based model and the other for the rule-based model.…”

“…Wang, et al [31] define a set of inter-rule vulnerabilities as path-based properties, but they provide no evaluation of scalability. Alhanahnah, et al [2] demostrated an automated, holistic analysis for IoT coordination threats from which we drew our app models; however, that work does not consider the state-based approach compared here.…”

Comparing formal models of IoT app coordination analysis

“…We evaluated our models with an experimental study performed over models of 222 real-world smart home apps for Samsung Smart-Things. These app models were automatically extracted from the source code of the applications by applying static analysis as described by Alhanahnah, et al [2], to extract an inter-procedural control flow graph (ICFG) from each app and translate the relevant nodes from the ICFG into the triggers, conditions, and actions defining the models for the rules of the app. Our evaluation addresses the following research questions:…”

“…To compare the two approaches, we used the Alloy Analyzer [20] to generate counterexamples for safety properties for seven types of possible interactions between co-located apps in a smart home IoT system. The definitions of these safety properties were adapted from prior work [2,11,13,31]. We translated each safety property into a pair of assertions-one for the state-based model and the other for the rule-based model.…”

“…Wang, et al [31] define a set of inter-rule vulnerabilities as path-based properties, but they provide no evaluation of scalability. Alhanahnah, et al [2] demostrated an automated, holistic analysis for IoT coordination threats from which we drew our app models; however, that work does not consider the state-based approach compared here.…”

Comparing formal models of IoT app coordination analysis

“…IoTCOM approach is proposed in (Alhanahnah et al, 2020). IoTCOM is based on the static analysis of behavioral models of IoT apps and formal methods to detect the security and safety violations against some predefined IoT safety and security properties.…”

Peer Review #1 of "A conflicts’ classification for IoT-based services: a comparative survey (v0.1)"

“…The IoTCOM approach is proposed in Alhanahnah, Stevens & Bagheri (2020). IoTCOM is based on the static analysis of behavioral models of IoT apps and formal methods to detect the security and safety violations against some predefined IoT safety and security properties.…”

Figure 1: Example of building environment control via two users.