Securing Node-RED Applications

Ahmadpanah, Mohammad M.; Balliu, Musard; Hedin, Daniel; Olsson, Lars E.; Sabelfeld, Andrei

doi:10.1007/978-3-030-91631-2_1

Cited by 8 publications

(6 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Our design choice of using a TEE enforces all three interpretations of isolation using hardware assistance and a small privileged security monitor. This is a stronger security property than current TAPs that rely on JavaScript language-based isolation that has a history of bugs [19] and only provides a weak version of the first two interpretations of isolation above.…”

Section: Tapdance Designmentioning

confidence: 99%

“…The Keystone [48] framework considers three types of side channels: (i) Controlled channel (ii) Timing based and (iii) Cache based. Controlled channel var season = Meta.currentUserTime.month(); var sunrises: Array<number> = [9,8,7,7,6,5,5,6,7,8,8,9]; var sunsets: Array<number> = [15,16,17,19,20,21,21,20,19,18,16,15] To mitigate timing attacks against the cryptographic code inside an applet enclave, we enable timing resistance in WolfSSL during compilation. This only leaves timing attacks against applet code as a possibility.…”

Section: Single Execution Per Trigger Event and Freshness Of Datamentioning

confidence: 99%

“…All of this trust is unwarranted, and as we will show, unnecessary as well. TAPs are essentially cloud services, and thus, they are vulnerable to all security and privacy issues that plague cloud services [4], [6], [18], [19]. For example, an attacker could exploit a bug in the web stack to steal OAuth tokens and then use them to access sensitive data or an attacker could compromise parts of the cloud service to violate integrity of applet execution.…”

Section: Introductionmentioning

confidence: 99%

“…A growing line of work in TAP security is exploring alternative designs for trigger-action platforms with the goal of achieving approximations of this ideal world [19], [23], [28], [32]- [34], [38], [55]. These works explore different points in the design space and have various trade-offs among security, performance and functionality under a threat model that the TAP itself is untrusted.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Architecting Trigger-Action Platforms for Security, Performance and Functionality

Jegan,

Swift,

Fernandes

2024

Proceedings 2024 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Trigger-action platform (TAP) is a type of distributed system that allows end-users to create programs that stitch their web-based services together to achieve useful automation. For example, a program can be triggered when a new spreadsheet row is added, it can compute on that data and invoke an action, such as sending a message on Slack. Current TAP architectures require users to place complete trust in their secure operation. Experience has shown that unconditional trust in cloud services is unwarranted -an attacker who compromises the TAP cloud service will gain access to sensitive data and devices for millions of users. In this work, we re-architect TAPs so that users have to place minimal trust in the cloud. Specifically, we design and implement TAPDance, a TAP that guarantees confidentiality and integrity of program execution in the presence of an untrustworthy TAP service. We utilize RISC-V Keystone enclaves to enable these security guarantees while minimizing the trusted software and hardware base. Performance results indicate that TAPDance outperforms a baseline TAP implementation using Node.js with 32% lower latency and 33% higher throughput on average.

show abstract

Section: Tapdance Designmentioning

confidence: 99%

Section: Single Execution Per Trigger Event and Freshness Of Datamentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Architecting Trigger-Action Platforms for Security, Performance and Functionality

Jegan,

Swift,

Fernandes

2024

Proceedings 2024 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…The TTN was connected to the cloud hosting by Digital Ocean as a storage resource and outsourced the data for integration via the MQTT broker. Node-RED was deployed in this study to wire together the measurement unit, Application Programming Interfaces (APIs), and diagnostic unit to create a smooth data flow in the editor dashboard (Ahmadpanah et al, 2021;Ferencz et al, 2020). Node-RED refers to a JavaScript-based tool built with the Node.js platform.…”

Section: Measurement Unitmentioning

confidence: 99%

Untitled

2022

JST

View full text Add to dashboard Cite

In Malaysia, on-site technical personnel manually inspect power transformers. Some vital condition indicators, such as oil and winding temperatures, are not monitored in real-time. This condition can be hazardous if the transformer gets overheated. Overheating can cause mechanical deformation and insulation degradation if not monitored regularly. Thus, an online monitoring system that meets industry standards is needed to enhance power transformer monitoring and troubleshooting. In this research, the Internet of Things (IoT) based data acquisition (DAQ) system was deployed for real-time oil temperature monitoring and inspection to detect incipient faults in power transformers early. This IoT-based DAQ system was connected to the substation remote terminal unit (RTU) to update real-time data on each power transformer. The long-range (LoRa) technology is proposed for the system to transmit temperature, current, and voltage from the power transformers. The data transmission from the oil temperature indicator (OTI), network server, and database was monitored and compared. It is observed that the temperature data was transferred from the network server to the database without any transmission delay. The average deviation from the two experiments was 0.006 and 0.003, respectively, compared to the manual reading from the OTI scale meter with a digital reading by the proposed DAQ system. For testing purposes, the alert

show abstract

Securing Node-RED Applications

Ahmadpanah

Balliu

Hedin

et al. 2021

Protocols, Strands, and Logic

Self Cite

View full text Add to dashboard Cite

Trigger-Action Platforms (TAPs) play a vital role in fulfilling the promise of the Internet of Things (IoT) by seamlessly connecting otherwise unconnected devices and services. While enabling novel and exciting applications across a variety of services, security and privacy issues must be taken into consideration because TAPs essentially act as persons-in-the-middle between trigger and action services. The issue is further aggravated since the triggers and actions on TAPs are mostly provided by third parties extending the trust beyond the platform providers. Node-RED, an open-source JavaScript-driven TAP, provides the opportunity for users to effortlessly employ and link nodes via a graphical user interface. Being built upon Node.js, third-party developers can extend the platform's functionality through publishing nodes and their wirings, known as flows. This paper proposes an essential model for Node-RED, suitable to reason about nodes and flows, be they benign, vulnerable, or malicious. We expand on attacks discovered in recent work, ranging from exfiltrating data from unsuspecting users to taking over the entire platform by misusing sensitive APIs within nodes. We present a formalization of a runtime monitoring framework for a core language that soundly and transparently enforces fine-grained allowlist policies at module-, API-, value-, and context-level. We introduce the monitoring framework for Node-RED that isolates nodes while permitting them to communicate via well-defined API calls complying with the policy specified for each node.

show abstract

Securing Node-RED Applications

Cited by 8 publications

References 37 publications

Architecting Trigger-Action Platforms for Security, Performance and Functionality

Architecting Trigger-Action Platforms for Security, Performance and Functionality

Untitled

Securing Node-RED Applications

Contact Info

Product

Resources

About