Cardiff University | Prifysgol Caerdydd ORCA
Online Research @ Cardiff 
WelshClear Cookie - decide language by browser settings

Detecting IoT user behavior and sensitive information in encrypted IoT -app traffic

Subahi, Alanoud and Theodorakopoulos, Georgios ORCID: https://orcid.org/0000-0003-2701-7809 2019. Detecting IoT user behavior and sensitive information in encrypted IoT -app traffic. Sensors 19 (21) , 4777. 10.3390/s19214777

[thumbnail of sensors-19-04777-v3.pdf] PDF - Published Version
Available under License Creative Commons Attribution.
Download (1MB)

Abstract

Many people use smart-home devices, also known as the Internet of Things (IoT), in their daily lives. Most IoT devices come with a companion mobile application that users need to install in their smartphone or tablet in order to control, configure, and interface with the IoT device. IoT devices send information about their users from their app directly to the IoT manufacturer's cloud; we call this the ''app-to-cloud way''. In this research, we invent a tool called IoT-app privacy inspector that can automatically infer the following from the IoT network traffic: the packet that reveals user interaction type with the IoT device via its app (e.g. login), the packets that carry sensitive Personal Identifiable Information (PII), the content type of such sensitive information (e.g. user's location). We use Random Forest classifier as a supervised machine learning algorithm to extract features from network traffic. To train and test the three different multi-class classifiers, we collect and label network traffic from different IoT devices via their apps. We obtain the following classification accuracy values for the three aforementioned types of information: 99.4%, 99.8%, and 99.8%. This tool can help IoT users take an active role in protecting their privacy.

Item Type: Article
Date Type: Publication
Status: Published
Schools: Computer Science & Informatics
Publisher: MDPI
ISSN: 1424-8220
Date of First Compliant Deposit: 11 November 2019
Date of Acceptance: 1 November 2019
Last Modified: 05 May 2023 10:49
URI: https://orca.cardiff.ac.uk/id/eprint/126476

Citation Data

Cited 19 times in Scopus. View in Scopus. Powered By Scopus® Data

Actions (repository staff only)

Edit Item Edit Item
Dimensions
Altmetric
Download Statistics

Downloads

Downloads per month over past year

View more statistics

CORE (COnnecting REpositories)


Maintained by Cardiff University Information Services