|
|
Anomaly Detection in IoT Networks
Halaj, Jozef ; Hujňák, Ondřej (oponent) ; Kořenek, Jan (vedoucí práce)
The goal of the thesis was an analysis of IoT communication protocols, their vulnerabilities and the creation of a suitable anomaly detector. It must be possible to run the detector on routers with the OpenWRT system. To create the final solution, it was necessary to analyze the communication protocols BLE and Z-Wave with a focus on their security and vulnerabilities. Furthermore, it was necessary to analyze the possibilities of anomaly detection, design and implement the detection system. The result is a modular detection system based on the NEMEA framework. The detection system is able to detect re-pairing of BLE devices representing a potential pairing attack. The system allows interception of Z-Wave communication using SDR, detection of Z-Wave network scanning and several attacks on network routing. The system extends the existing detector over IoT statistical data with more detailed statistics with a broader view of the network. The original solution had only Z-Wave statistics with a limited view of the network obtained from the Z-Wave controller. The modular solution of the system provides deployment flexibility and easy system scalability. The functionality of the solution was verified by experiments and a set of automated tests. The system was also successfully tested on a router with OpenWRT and in the real world enviroment. The results of the thesis were used within the SIoT project.
|
|
|
Secure Gateway for Wireless IoT Protocols
Hošala, Martin ; Hujňák, Ondřej (oponent) ; Kořenek, Jan (vedoucí práce)
This work aimed to create a functional prototype of a secured gateway for wireless IoT protocols based on the BeeeOn IoT Gateway. To create the resulting solution, it was necessary to analyze existing IoT securing systems, propose their integration with the BeeeOn Gateway, and finally deploy the system. As the securing systems in this work, NEMEA modules developed within SIoT project were used. The resulting solution runs on Turris Omnia router and consists of the BeeeOn Gateway, five SIoT detection modules and other NEMEA modules necessary for detectors full functionality. Potential threats are being detected in the Z-Wave, BLE, and LoRaWAN networks. A user can interact with the system through a web interface of Coliot system, which is also a part of the resulting solution and serves to store and present detection results. The system functionality was verified experimentally and by a set of integration tests. The testing has revealed many deficiencies connected to used subsystems, and most of them were fixed. Resulting system is used within the SIoT project.
|
|
|
Anomaly Detection in IoT Networks
Halaj, Jozef ; Hujňák, Ondřej (oponent) ; Kořenek, Jan (vedoucí práce)
The goal of the thesis was an analysis of IoT communication protocols, their vulnerabilities and the creation of a suitable anomaly detector. It must be possible to run the detector on routers with the OpenWRT system. To create the final solution, it was necessary to analyze the communication protocols BLE and Z-Wave with a focus on their security and vulnerabilities. Furthermore, it was necessary to analyze the possibilities of anomaly detection, design and implement the detection system. The result is a modular detection system based on the NEMEA framework. The detection system is able to detect re-pairing of BLE devices representing a potential pairing attack. The system allows interception of Z-Wave communication using SDR, detection of Z-Wave network scanning and several attacks on network routing. The system extends the existing detector over IoT statistical data with more detailed statistics with a broader view of the network. The original solution had only Z-Wave statistics with a limited view of the network obtained from the Z-Wave controller. The modular solution of the system provides deployment flexibility and easy system scalability. The functionality of the solution was verified by experiments and a set of automated tests. The system was also successfully tested on a router with OpenWRT and in the real world enviroment. The results of the thesis were used within the SIoT project.
|
|
|
Secure Gateway for Wireless IoT Protocols
Hošala, Martin ; Hujňák, Ondřej (oponent) ; Kořenek, Jan (vedoucí práce)
This work aimed to create a functional prototype of a secured gateway for wireless IoT protocols based on the BeeeOn IoT Gateway. To create the resulting solution, it was necessary to analyze existing IoT securing systems, propose their integration with the BeeeOn Gateway, and finally deploy the system. As the securing systems in this work, NEMEA modules developed within SIoT project were used. The resulting solution runs on Turris Omnia router and consists of the BeeeOn Gateway, five SIoT detection modules and other NEMEA modules necessary for detectors full functionality. Potential threats are being detected in the Z-Wave, BLE, and LoRaWAN networks. A user can interact with the system through a web interface of Coliot system, which is also a part of the resulting solution and serves to store and present detection results. The system functionality was verified experimentally and by a set of integration tests. The testing has revealed many deficiencies connected to used subsystems, and most of them were fixed. Resulting system is used within the SIoT project.
|
host ::
RSS.