Bezpečné zprovoznění IoT zařízení / Secure Provisioning of IoT Devices

Rusiňák, Petr

January 2021

S ohledem na stále rostoucí počty prodaných IoT zařízeních se postupně začínají objevovat projekty, ve kterých jsou IoT zařízení použity ve stovkách až tisících. Tyto projekty však z časových důvodů neumožňují ruční konfiguraci každého zařízení zvlášť, čímž vzniká poptávka po protokolech, které dokáží rychle, ale přitom i bezpečně, nastavit nové IoT zařízení. Cílem této práce je vytvořit protokol, který umožní automatický přenos přihlašovacích údajů k Wi-Fi síti do nově zakoupeného IoT zařízení. Navržený protokol používá speciální konfigurační zařízení, ve kterém budou uloženy přihlašovací údaje všech zařízeních kompatibilních s tímto protokolem v rámci dané administrativní domény, a které bude poskytovat tyto přihlašovací údaje nenakonfigurovaným IoT zařízením za předpokladu, že je možné ověřit jejich identitu. K ověření identity nenakonfigurovaných zařízení je použita asymetrické kryptografie. Protokol byl implementován pomocí IoT zařízeních ESP32, přičemž ke komunikaci mezi nenakonfigurovanými je využit nespojovaný komunikační protokol ESP-NOW.

Fingerprinting the Smart Home: Detection of Smart Assistants Based on Network Activity

Hashemi, Arshan

01 December 2018

As the concept of the Smart Home is being embraced globally, IoT devices such as the Amazon Echo, Google Home, and Nest Thermostat are becoming a part of more and more households. In the data-driven world we live in today, internet service providers (ISPs) and companies are collecting large amounts of data and using it to learn about their customers. As a result, it is becoming increasingly important to understand what information ISPs are capable of collecting. IoT devices in particular exhibit distinct behavior patterns and specific functionality which make them especially likely to reveal sensitive information. Collection of this data provides valuable information and can have some serious privacy implications. In this work I present an approach to fingerprinting IoT devices behind private networks while only examining last-mile internet traffic . Not only does this attack only rely on traffic that would be available to an ISP, it does not require changes to existing infrastructure. Further, it does not rely on packet contents, and therefore works despite encryption. Using a database of 64 million packets logged over 15 weeks I was able to train machine learning models to classify the Amazon Echo Dot, Amazon Echo Show, Eufy Genie, and Google Home consistently. This approach combines unsupervised and supervised learning and achieves a precision of 99.95\%, equating to one false positive per 2,000 predictions. Finally, I discuss the implication of identifying devices within a home.

IoT

Smart Assistants

Machine Learning

Fingerprinting

IoT Privacy

IoT Security

Návrh IoT zařízení komunikujícího pomocí standardu NB-IoT / Design of IoT device communicating by using NB-IoT standard

Vörös, Ondrej

January 2019

This diploma thesis deals with the design of low-power IoT device communicating by using the NB-IoT standard. The theoretical part of the thesis is dedicated to the explanation of the principles and capabilities of communication in IoT networks Sigfox, LoRa and NB-IoT, and also its physical layer, network architecture, techonology principles and frequency bands used. The application part of the thesis is dedicated to design of the NB-IoT device from the system design through the selection of main components to the detailed physical design of the device. Two prototypes of the device with two different radio modules used are fabricated on which is performed measurement of the power profile of the device in various operation modes.

low power; IoT; LPWA; NB-IoT

Evaluating Distributed Machine Learning using IoT Devices

Zam, Anton

January 2021

Internet of things (IoT) blir bara större och större varje år och nya enheter läggs till hela tiden. Även om en stor del av dessa enheter är kontinuerligt använda finns det fortfarande väldigt många enheter som står inaktiva och sitter på oanvänd processorkraft som kan användas till att utföra maskininlärnings beräkningar. Det finns för nuvarande väldigt många metoder för att kombinera processorkraften av flera enheter för att utföra maskininlärnings uppgifter, dessa brukar kallas för distribuerade maskininlärnings metoder. huvudfokuset av detta arbetet är att utvärdera olika distribuerade maskininlärnings metoder för att se om de kan implementeras på IoT enheter och i fallet metoderna kan implementeras ska man mäta hur effektiva och skalbara dessa metoderna är. Den distribuerade maskininlärnings metoden som blivit implementerad i detta arbete kallas för ”MultiWorkerMirrorStrategy” och denna metod blev utvärderar genom en jämförelse på träningstiden, tränings precisionen och utvärderings precisionen av 2,3 och 4 Raspberry pi:s med en icke distribuerad metod vilket endast använt sig av 1 Raspberry pi. Resultatet av mätningarna visade att trots att processorkraften ökar för varje enhet som lagts till i clustret blir träningstiden högre samtidigt som resterande mätningar var desamma. Genom att analysera och diskutera dessa resultat drogs slutsatsen att den overhead som skapats av att enheterna kommunicerar med varandra är alldeles för hög vilket resulterar i att den implementerade metoden är väldigt ineffektiv och kan inte skallas upp utan att någon typ av optimering läggs till. / Internet of things is growing every year with new devices being added all the time. Although some of the devices are continuously in use a large amount of them are mostly idle and sitting on untapped processing power that could be used to compute machine learning computations. There currently exist a lot of different methods to combine the processing power of multiple devices to compute machine learning task these are often called distributed machine learning methods. The main focus of this thesis is to evaluate these distributed machine learning methods to see if they could be implemented on IoT devices and if so, measure how efficient and scalable these methods are. The method chosen for implementation was called “MultiWorkerMirrorStrategy” and this method was evaluated by comparing the training time, training accuracy and evaluation accuracy of 2,3 and 4 Raspberry pi:s  with a nondistributed machine learning method with 1 Raspberry pi. The results showed that although the computational power increased with every added device the training time increased while the rest of the measurements stayed the same. After the results were analyzed and discussed the conclusion of this were that the overhead added for communicating between devices were to high resulting in this method being very inefficient and wouldn’t scale without some sort of optimization being added.

MultiWorkerMirrorStrategy

IoT

MultiWorkerMirrorStrategy

IoT

Software Engineering

Programvaruteknik

Internet of Things: Business plan for an early-stage technology driven start-up / Internet of Things: Business plan for an early-stage technology driven start-up

Verteletskyi, Maksym

January 2016

The goal of the thesis is to write a business plan for an early stage internet of things startup, specializing in indoor safety & facility management. Evaluate the potential of this business idea and its value proposition. Select the proper entry markets and calculate financial projections. Do it in such way that it would be acceptable by investors interested in making capital inputs.

Business Plan; IoT; Startup

Scalable IoT Network Testbed with Hybrid Device Emulation

Zhao, Zhengan

19 August 2022

In recent years, the Internet of Things (IoT) has been proliferating in various fields, such as health care, smart city, and connected autonomous vehicles. Accompanying the popularity of IoT are security attacks that exploit the vulnerabilities of many IoT devices. To build IoT anomaly detection systems, we need to collect and label a large amount data from diverse IoT scenarios, which is a time-consuming and prohibitive task if without the support of an IoT testbed. This thesis fills this urgent need by developing a scalable, flexible, safe, and secure IoT testbed. To make the testbed scalable, we need to reduce the hardware cost and make its architecture easily extendable. For this, we build a hybrid testbed consisting of real IoT devices, such as motion sensors and smart cameras, and emulated devices with Raspberry Pi. The emulated devices can replace real IoT devices with the same operational behaviour as real IoT devices but at a much lower price. Flexibility means the testbed can easily simulate different application scenarios. To make the testbed flexible, we build a dedicated data management module to facilitate the complex tasks in generating diverse traffic patterns, reproducing security attacks, collecting, visualizing, and analyzing network traffic. Testbed safety means the testbed will not cause any adverse impact to the Internet, and testbed security means protecting it from outside attacks. For safety, we carefully analyze the source code and the behaviour of launched attacks and configure a traffic filter to strictly contain the attack traffic within the testbed. For security, we scan and analyze the security of all IoT devices within the testbed to ensure no exposed vulnerability in the used devices. / Graduate

Testbed

Emulation

IoT

Network

NB-IoT Coverage : Development of a measuring instrument for NB-IoT / NB-IoT täckning : Utveckling av ett mätinstrument för NB-IoT

Blom, Albin

January 2021

This report is an exposition of the development of a measuring instrument whosetask is to map the physical coverage of the NB-IoT network. The measuringinstrument was developed on TietoEvry's initiative, as it was in their interest to obtaina measuring instrument that can be used to map the coverage in parts of VarmlandsNB-IoT network. Which in this way provides an assessment for any future projectsinvolving NB-IoT. The development of the measuring instruments you can carry withyou out into the field, uses a microcomputer for collecting measurement data savedin a log file using Python. The report also describes a complimentary program that inturn takes and visualizes the acquired data in the form of markers on a map, whichshows the signal strength of the NB-IoT network. The visualization program is writtenin Java and is based on the open source project: jxmapviewer2. However, themeasuring instrument as it is today needs further testing to ensure the accuracy ofthe measuring instrument. Something that can be looked over in the future.

NB-IoT

Mobile

IoT

Engineering and Technology

Teknik och teknologier

Univerzální komunikační zařízení využívající technologie LoRaWAN a Narrowband IoT / Multi-radio Tester Utilizing LoRaWAN and Narrowband IoT Communication Technologies

Novotný, Jaromír

January 2019

This Master thesis is focused on the design and consequential realization of the Multi-RAT communication device. The theoretical part describes a comparison of two promising communication LPWA (Low Power Wide Area) technologies that are available to use in the Czech Republic. These technologies are NB-IoT (NarrowBand-Internet of Things) and LoRaWAN (Long Range Wide Area Network). The practical part contains a description used components, their consequential fitting and testing of designed printed circuit board of the device. The thesis also describes the implementation of software and realized measurement. Technical documentation of a device can be found in the appendix of this thesis.

NB-IoT and LoRaWAN Performance Testing in Urban and Rural Environment

Milos Stankovic (9741251)

15 December 2020

With technology advancements and the prices of electronic components reducing over the last fifteen years, many devices and systems that would have been proprietary only for large companies or industry giants are becoming an everyday household item. Various areas of technology have been benefiting from this but one of the biggest is the Internet of Things (IoT).With the prevalence of IoT, it has been integrated into houses, small businesses, farms, agriculture, building automation, etc. and the user population is now a resource to the industry as they complete personal projects. Within any project there are always limitations, this might be a limited time, limited funds, limited distance, or limitations of the devices being used. This study proposes to evaluate two low-powered networks, Narrowband Internet of Things (NB-IoT)and Long-Range Wide-Area Network(LoRaWAN), in different environments with the goal of understanding where the signal propagation is better and what distances can be reached despite obstructions. Distances and signal propagations, when measured by the manufacturers are often evaluated in ideal conditions which is rarely the case when utilized in the field. This creates a gap in the deployment and the end-users are frequently faced with diminished performances. As IoT is predominantly employed in urban and rural areas this study will focus on those two settings by testing the Received Signal Strength Indicator (RSSI)at various distances. The evaluation testing of the two systems showed each system performing more consistently in rural areas but neither had 100% coverage at any locations.

Wireless Communications

Internet of things (IoT)

LoRa

LoRaWAN

NB-IoT

LPWAN

Design and Development of an Internet-Of-Things (IoT) Gateway for Smart Building Applications

Nugur, Aditya

02 November 2017

With growing concerns on global energy demand and climate change, it is important to focus on efficient utilization of electricity in commercial buildings, which contribute significantly to the overall electricity consumption. Accordingly, there has been a number of Building Energy Management (BEM) software/hardware solutions to monitor energy consumption and other measurements of individual building loads. BEM software serves as a platform to implement smart control strategies and stores historical data. Although BEM software provides such lucrative benefits to building operators, in terms of energy savings and personalized control, these benefits are not harnessed by most small to mid-sized buildings due to a high cost of deployment and maintenance. A cloud-based BEM system can offer a low-cost solution to promote ease of use and support a maintenance-free installation. In a typical building, a conventional router has a public address and assigns private addresses to all devices connected to it. This led to a network topology, where the router is the only device in the Internet space with all other devices forming an isolated local area network behind the router. Due to this scenario, a cloud-based BEM software needs to pass through the router to access devices in a local area network. To address this issue, some devices, during operation, make an outbound connection to traverse through the router and provide an interface to itself on the Internet. Hence, based on their capability to traverse through the router, devices in a local area network can be distinguished as cloud and non-cloud devices. Cloud-based BEM software with sufficient authorization can access cloud devices. In order to access devices adhering to non-cloud protocols, cloud-based BEM software requires a device in the local area network which can perform traversal through the router on behalf of all non-cloud devices. Such a device acts as an IoT gateway, to securely interconnect devices in a local area network with cloud-based BEM software. This thesis focuses towards architecting, designing and prototyping an Internet-of-Things (IoT) gateway which can perform traversal on behalf of non-cloud devices. This IoT gateway enables cloud-based BEM software to have a comprehensive access to supported non-cloud devices. The IoT gateway has been designed to support BACnet, Modbus and HTTP RESTful, which are the three widely adopted communication protocols in the building automation and control domain. The developed software executes these three communication protocols concurrently to address requests from cloud-based BEM system. The performance of the designed architecture is independent of the number of devices supported by the IoT gateway software. / Master of Science

IoT

Smart Buildings

IoT Gateway

Building Energy Management