|
|
Automatic Testing of the BeeeOn System
Wolfert, Richard ; Hujňák, Ondřej (referee) ; Viktorin, Jan (advisor)
This Master's thesis is about analysis of Internet of Things project BeeeOn, design and production of unit, integration and system tests and their automation by utilization of Continuous integration system Jenkins CI. The theoretical part is devoted to software testing fundamentals and Continuous integration systems. The main point of this thesis is about specification and description of BeeeOn system, its requirements for automatic testing and its implementation. In conclusion, the results of this work and expansion possibilities are discussed.
|
|
|
Security Analysis of Mifare Classic Smart Cards
Bobčík, Martin ; Hellebrandt, Lukáš (referee) ; Hujňák, Ondřej (advisor)
Goal of this bachelor thesis is a security study of MIFARE Classic contactless smart cards and risk analysis of their usage. There are described individual vunerabilities in the design and CRYPTO1 cipher of such cards. In this thesis is also experimented with Chameleon Mini device, which is used to perform two attacks and one cryptoanalysis of the cards. Namely, card emulation, relay attack, and analysis of insufficient randomness of cards' pseudorandom number generator. From those, only card emulation was fully successful.
|
|
|
Server for Collecting Sensor Data and Control of Active Elements
Halaj, Jozef ; Hujňák, Ondřej (referee) ; Viktorin, Jan (advisor)
Bachelor's thesis aims on communication with remote sensors and active elements in the smart home system called BeeeOn. The individual parts of the BeeeOn system are described with respect to the current insufficient communication principle and implementation. For communication with BeeeOn gateways, the WebSocket technology is used. It allows communication on netwoks with a restricted access to privileged ports. The implemented server is in principle capable of serving a high number of BeeeOn gateways that works as a bridge among the server and the remote sensors. The communication is secured with SSL/TLS, it uses confirmation mechanism to guarantee reliability and it is easily extendable by other protocol messages. It enables the system to send asynchronous commands to the BeeeOn gateway and to the connected devices. The server is implemented in C++ language. The most common communication scenarios were tested by automated tests.
|
|
|
Database Performance Tester
Šulaj, Martin ; Hujňák, Ondřej (referee) ; Očenáš, Martin (advisor)
Main goal goal of this project is to create tool for performance testing of relational databases and to prove his functionality. The tool is logically divided into 4 parts and every one of them can work independently. With the use of the tool we ca create, execute and evaluate test suites. Graphical visualisation of processed results is a part of the tool. The tool works with test suites that are executed on Raspberry Pi 3 B device and on well performing laptop. Databases that are tested with this tool are MySQL, PostgreSQL and SQLite.
|
|
|
Detection of Security Incidents in Bluetooth Networks
Bárteček, Bronislav ; Hujňák, Ondřej (referee) ; Kořenek, Jan (advisor)
The goal of this bachelor thesis is to detect security incidents in Bluetooth Low Energy(BLE) networks. It was necessary to create a tool that would detect security issues in devices and monitor the activity of devices that communicate using BLE. Ubertooth was used in the solution to sniff BLE communication. Ubertooth is used to capture BLE packets, which are then decoded by the created program and analyzed. The created tool determines the device security rate from these data. At the same time, it monitors network activity and, if necessary, informs the user of unwanted device activities, such as connecting foreign devices to user devices.
|
|
|
Support for RADIUS Protocol in SSSD
Hujňák, Ondřej ; Očenášek, Pavel (referee) ; Zelený, Jan (advisor)
Moderní trendy ve správě uživatelů ve firemních prostředích směřují k centralizovaným řešením jako je LDAP či Active Directory. Ověřování uživatelů vůči těmto úložištím v Unix-like systémech je dostupné buď přes PAM moduly, nebo nově i přes bezpečnostní démon SSSD. Tato práce analyzuje využití RADIUS protokolu pro ověřování uživatelů a v rámci práce byl vyvinut modul do SSSD umožňující využití tohoto protokolu.
|
|
|
Anomaly Detection in IoT Networks
Halaj, Jozef ; Hujňák, Ondřej (referee) ; Kořenek, Jan (advisor)
The goal of the thesis was an analysis of IoT communication protocols, their vulnerabilities and the creation of a suitable anomaly detector. It must be possible to run the detector on routers with the OpenWRT system. To create the final solution, it was necessary to analyze the communication protocols BLE and Z-Wave with a focus on their security and vulnerabilities. Furthermore, it was necessary to analyze the possibilities of anomaly detection, design and implement the detection system. The result is a modular detection system based on the NEMEA framework. The detection system is able to detect re-pairing of BLE devices representing a potential pairing attack. The system allows interception of Z-Wave communication using SDR, detection of Z-Wave network scanning and several attacks on network routing. The system extends the existing detector over IoT statistical data with more detailed statistics with a broader view of the network. The original solution had only Z-Wave statistics with a limited view of the network obtained from the Z-Wave controller. The modular solution of the system provides deployment flexibility and easy system scalability. The functionality of the solution was verified by experiments and a set of automated tests. The system was also successfully tested on a router with OpenWRT and in the real world enviroment. The results of the thesis were used within the SIoT project.
|
|
|
Dynamic Mesh Network Implemented in Micropython on Top of ESP-NOW Protocol
Šesták, Jindřich ; Hujňák, Ondřej (referee) ; Malinka, Kamil (advisor)
Cílem této práce je vytvořit fungující dynamickou mesh síť na ESP32 microkontrolerech pro využití v IoT a senzorových sítích. Mesh síť se skládá z několika uzlů mezi sebou propojených do stromové struktury a je schopna se vypořádat i z pádem kteréholiv z uzlů. To je zajištěno vytvořením nového mesh řešení, které je schopno fungovat s připojením k Internetu i bez připojení. Použití MicroPython umožňuje asynchronní zpracování neblokujícím způsobem. Projekt je postaven pomocí dvou komunikačních protokolů, proprietárního ESP-NOW a běžné WiFi komunikace. Řešení přináší možnosti rychlého vývoje mesh aplikací, ale je silně limitováno pamětí mikrokontrolerů. Funkčnost řešení byla otestovaná pomocí vytvořené demo aplikace se sadou třech testovacích scénářů pro domácí použití.
|
|
|
System for Detection of APT Attacks
Hujňák, Ondřej ; Kačic, Matej (referee) ; Barabas, Maroš (advisor)
The thesis investigates APT attacks, which are professional targeted attacks that are characterised by long-term duration and use of advanced techniques. The thesis summarises current knowledge about APT attacks and suggests seven symptoms that can be used to check, whether an organization is under an APT attack. Thesis suggests a system for detection of APT attacks based on interaction of those symptoms. This system is elaborated further for detection of attacks in computer networks, where it uses user behaviour modelling for anomaly detection. The detector uses k-nearest neighbors (k-NN) method. The APT attack recognition ability in network environment is verified by implementing and testing this detector.
|
|
|
Secure Gateway for Wireless IoT Protocols
Hošala, Martin ; Hujňák, Ondřej (referee) ; Kořenek, Jan (advisor)
Táto práca bola zameraná na vytvorenie funkčného prototypu zabezpečenej brány pre bezdrôtové IoT protokoly s využítím BeeeOn IoT Gateway. Na vytvorenie výsledného riešenia bolo potrebné analyzovať existujúce zabezpečovacie systémy IoT, navrhnúť ich integráciu s BeeeOn Gateway a systém nasadiť. Ako zabezpečovacie systémy v tejto práci boli použité moduly NEMEA vyvinuté v rámci projektu SIoT. Výsledné riešenie beží na routeri Turris Omnia a pozostáva z BeeeOn Gateway, piatich detekčných modulov SIoT a ďalších modulov NEMEA potrebných pre plnú funkčnosť detektorov. Potenciálne hrozby sa zisťujú v sieťach Z-Wave, BLE a LoRaWAN. Používateľ môže so systémom interagovať prostredníctvom webového rozhrania systému Coliot, ktorý je tiež súčasťou výsledného riešenia a slúži na ukladanie a prezentáciu výsledkov detekcie. Funkčnosť systému bola overená experimentálne a množinou integračných testov. Testovanie odhalilo mnoho nedostatkov spojených s použitými podsystémami a väčšina z nich bola opravená. Výsledný systém sa používa sa v rámci projektu SIoT.
|
guest ::
