research-article

After Everything is Connected: A Client Certificate-Oriented Perspective of IoT Device Security Analysis

Authors:

Wei Xia,

Qiyu Zhang,

Xin He,

Wei Wang,

Zhen Li,

Gang XiongAuthors Info & Claims

ICIT '21: Proceedings of the 2021 9th International Conference on Information Technology: IoT and Smart City

Pages 321 - 325

https://doi.org/10.1145/3512576.3512644

Published: 11 April 2022 Publication History

Get Access

Abstract

In the IoT era, more and more devices of different types and functions are connected to the network. However, smart devices are bringing about increasingly serious security problems. Although some giants or well-known equipment manufacturers have introduced the transport layer security protocol as a secure transmission mechanism, they are still missing tens of thousands in specific practices. In this paper, we provide a client certificates-oriented perspective on the security analysis of IoT devices, which proves that although the TLS protocol is used, it is still not enough to ensure security. We utilized our self-developed passive traffic-based client certificate collection tool to conduct extensive TLS certificate collection on the ISP-level network CSTNET. We use the keywords already collected to filter out certificates related to IoT smart devices from these certificates, and analyze the security issues that exist. We designed an active crawling subsystem, put the keywords that identify the manufacturer in the certificate into the Internet to crawl its homepage, and use the characteristics of page elements to dig out unknown IoT smart devices, and conduct research on the issue of its certificate. It turns out that more needs to be done to meet the advanced security requirements in practice and deployment.

References

[1]

S. Sinha, “State of iot 2021: Number of connected iot devices growing 9% to 12.3 billion globally, cellular iot now surpassing 2 billion,” https: //iot-analytics.com/number-connected-iot-devices/, 2021

Google Scholar

[2]

M. Cui, Z. Cao, and G. Xiong, “How is the forged certificates in the wild: Practice on large-scale ssl usage measurement and analysis,” in International Conference on Computational Science. Springer, 2018, pp. 654–667.

Digital Library

Google Scholar

[3]

P. Fu, Z. Li, and e. a. Xiong, Gang, “Ssl/tls security exploration through x. 509 certificate's life cycle measurement,” in 2018 IEEE Symposium on Computers and Communications (ISCC). IEEE, 2018, pp. 00 652–00 655.

Crossref

Google Scholar

[4]

M. Wachs, Q. Scheitle, and G. Carle, “Push away your privacy: Precise user tracking based on tls client certificate authentication,” in 2017 Network Traffic Measurement and Analysis Conference (TMA). IEEE, 2017, pp. 1–9.

Crossref

Google Scholar

[5]

T. Chung, Y. Liu, and e. a. Choffnes, David, “Measuring and applying invalid ssl certificates: The silent majority,” in Proceedings of the 2016 Internet Measurement Conference, 2016, pp. 527–541.

Digital Library

Google Scholar

[6]

E. Rescorla, “The Transport Layer Security (TLS) Protocol Version 1.3 (RFC8446),” https://tools.ietf.org/html/rfc8446, 2018.

Digital Library

Google Scholar

[7]

Craig Partridge, M.A.: Ethical considerations in network measurement papers. https://dl.acm.org/doi/fullHtml/10.1145/2896816 (2016)

Crossref

Google Scholar

Cited By

View all

Dong HZhang YLee HDu KTu GSun YVallina-Rodríguez NSuarez-Tángil GLevin DPelsser C(2024)Mutual TLS in Practice: A Deep Dive into Certificate Configurations and Privacy IssuesProceedings of the 2024 ACM on Internet Measurement Conference10.1145/3646547.3688415(214-229)Online publication date: 4-Nov-2024
https://dl.acm.org/doi/10.1145/3646547.3688415
Yin ZZhou QQu JLv F(2023)How Far is User Privacy Leakage: A Revisit of Client Certificate Usage2023 8th International Conference on Cloud Computing and Big Data Analytics (ICCCBDA)10.1109/ICCCBDA56900.2023.10154744(279-284)Online publication date: 26-Apr-2023
https://doi.org/10.1109/ICCCBDA56900.2023.10154744

Recommendations

NB-IoT Security: A Survey
Abstract
In the past few years, the term Internet of Things (IoT) has become very prevalent. In IoT, aggregation of data (from sensors) to processing the data (to the cloud) is energy constraint. To address this challenge, Narrowband- Internet of Things (...
A Six-View Perspective Framework for System Security: Issues, Risks, and Requirements

To secure information systems, the security risks and requirements must be clearly understood before the proper security mechanisms can be identified and designed. Today ¢â ^TMs security requirement specifications are generally incomplete and narrowly ...
A Survey on the Security of Smart Homes: Issues and Solutions
ICSDE'18: Proceedings of the 2nd International Conference on Smart Digital Environment

Today we are witnessing a new concept that is growing fast: The Internet of Things (IoT). We can see all devices we use in any field, are transformed into a smarter version such as smart homes, smart beds, smart coffee machines and smart everything. ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ICIT '21: Proceedings of the 2021 9th International Conference on Information Technology: IoT and Smart City

December 2021

584 pages

ISBN:9781450384971

DOI:10.1145/3512576

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 11 April 2022

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed limited

Funding Sources

National Key Research and Development Program of China

Conference

ICIT 2021

ICIT 2021: IoT and Smart City

December 22 - 25, 2021

Guangzhou, China

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
54
Total Downloads

Downloads (Last 12 months)24
Downloads (Last 6 weeks)2

Reflects downloads up to 16 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Dong HZhang YLee HDu KTu GSun YVallina-Rodríguez NSuarez-Tángil GLevin DPelsser C(2024)Mutual TLS in Practice: A Deep Dive into Certificate Configurations and Privacy IssuesProceedings of the 2024 ACM on Internet Measurement Conference10.1145/3646547.3688415(214-229)Online publication date: 4-Nov-2024
https://dl.acm.org/doi/10.1145/3646547.3688415
Yin ZZhou QQu JLv F(2023)How Far is User Privacy Leakage: A Revisit of Client Certificate Usage2023 8th International Conference on Cloud Computing and Big Data Analytics (ICCCBDA)10.1109/ICCCBDA56900.2023.10154744(279-284)Online publication date: 26-Apr-2023
https://doi.org/10.1109/ICCCBDA56900.2023.10154744

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

HTML Format

View this article in HTML Format.

HTML Format

Abstract

References

Cited By

Recommendations

NB-IoT Security: A Survey

A Six-View Perspective Framework for System Security: Issues, Risks, and Requirements

A Survey on the Security of Smart Homes: Issues and Solutions

Comments

Information

Published In

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

HTML Format

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations