TL;DR
This paper presents a methodology to identify and block non-essential IoT device traffic, enabling improved security and privacy without compromising device functionality, by automatically classifying network destinations as required or not.
Contribution
The paper introduces a rigorous automated approach to distinguish essential from non-essential IoT traffic, enabling selective blocking without device disruption.
Findings
16 out of 31 devices have blockable non-required destinations
All third-party destinations observed are blockable
Existing blocklists are limited in effectiveness for IoT traffic
Abstract
Despite the prevalence of Internet of Things (IoT) devices, there is little information about the purpose and risks of the Internet traffic these devices generate, and consumers have limited options for controlling those risks. A key open question is whether one can mitigate these risks by automatically blocking some of the Internet connections from IoT devices, without rendering the devices inoperable. In this paper, we address this question by developing a rigorous methodology that relies on automated IoT-device experimentation to reveal which network connections (and the information they expose) are essential, and which are not. We further develop strategies to automatically classify network traffic destinations as either required (i.e., their traffic is essential for devices to work properly) or not, hence allowing firewall rules to block traffic sent to non-required destinations…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
