Loading...

Building Hardened Internet-of-Things Clients with Language-theoretic Security

269 views

Loading...

Loading...

Transcript

The interactive transcript could not be loaded.

Loading...

Rating is available when the video has been rented.
This feature is not available right now. Please try again later.
Published on May 30, 2017

Building Hardened Internet-of-Things Clients with Language-theoretic Security

Prashant Anantharaman
Presented at the 2017 LangSec Workshop
at the IEEE Symposium on Security & Privacy Workshops
May 25, 2016
San Jose, CA
http://www.ieee-security.org/TC/SP2017/
http://spw17.langsec.org/

ABSTRACT
Unprincipled input handling has caused many of the most prevalent and severe vulnerabilities in the Internet era, and this trend appears to continue in the emerging Internet of Things (IoT). In this paper, we present a methodology to build secure input-handling functionality for application-layer IoT protocols by applying the Language-theoretic Security (LangSec) philosophy. We have built working implementations for the XMPP and MQTT protocols and demonstrated that our clients, which consist of less than a hundred lines of code, correctly recognize all valid messages in our tests. With respect to CPU time, our clients compare well against the most widely deployed implementations of these two protocols.

Loading...

When autoplay is enabled, a suggested video will automatically play next.

Up next


to add this to Watch Later

Add to

Loading playlists...