On privacy in home automation systems

Home Automation Systems (HASs) are becoming increasingly popular in newly built as well as existing properties. While offering increased living comfort, resource saving features and other commodities, most current commercial systems do not protect sufficiently against passive attacks. In this thesis we investigate privacy aspects of Home Automation Systems. We analyse the threats of eavesdropping and traffic analysis attacks, demonstrating the risks of virtually undetectable privacy violations. By taking aspects of criminal and data protection law into account, we give an interdisciplinary overview of privacy risks and challenges in the context of HASs. We present the first framework to formally model privacy guarantees of Home Automation Systems and apply it to two different dummy traffic generation schemes. In a qualitative and quantitative study of these two algorithms, we show how provable privacy protection can be achieved and how privacy and energy efficiency are interdependent. This allows manufacturers to design and build secure Home Automation Systems which protect the users' privacy and which can be arbitrarily tuned to strike a compromise between privacy protection and energy efficiency.Hausautomationssysteme (HAS) gewinnen sowohl im Bereich der Neubauten als auch bei Bestandsimmobilien stetig an Beliebtheit. Während sie den Wohnkomfort erhöhen, Einsparpotential für Strom und Wasser sowie weitere Vorzüge bieten, schützen aktuelle Systeme nicht ausreichend vor passiven Angriffen. In dieser Arbeit untersuchen wir Aspekte des Datenschutzes von Hausautomationssystemen. Wir betrachten die Gefahr des Abfangens von Daten sowie der Verkehrsanalyse und zeigen die Risiken auf, welche sich durch praktisch unsichtbare Angriffe für Nutzende ergeben. Die Betrachtung straf- und datenschutzrechtlicher Aspekte ermöglicht einen interdisziplinären Überblick über Datenschutzrisiken im Kontext von HAS. Wir stellen das erste Rahmenwerk zur formellen Modellierung von Datenschutzgarantien in Hausautomationssystemen vor und demonstrieren die Anwendung an zwei konkreten Verfahren zur Generierung von Dummy-Verkehr. In einer qualitativen und quantitativen Studie der zwei Algorithmen zeigen wir, wie Datenschutzgarantien erreicht werden können und wie sie mit der Energieeffizienz von HAS zusammenhängen. Dies erlaubt Herstellern die Konzeption und Umsetzung von Hausautomationssystemen, welche die Privatsphäre der Nutzenden schützen und die eine freie Parametrisierung ermöglichen, um einen Kompromiss zwischen Datenschutz und Energieeffizienz zu erreichen

Contributions to Context-Aware Smart Healthcare: A Security and Privacy Perspective

Les tecnologies de la informació i la comunicació han canviat les nostres vides de manera irreversible. La indústria sanitària, una de les indústries més grans i de major creixement, està dedicant molts esforços per adoptar les últimes tecnologies en la pràctica mèdica diària. Per tant, no és sorprenent que els paradigmes sanitaris estiguin en constant evolució cercant serveis més eficients, eficaços i sostenibles. En aquest context, el potencial de la computació ubiqua mitjançant telèfons intel·ligents, rellotges intel·ligents i altres dispositius IoT ha esdevingut fonamental per recopilar grans volums de dades, especialment relacionats amb l'estat de salut i la ubicació de les persones. Les millores en les capacitats de detecció juntament amb l'aparició de xarxes de telecomunicacions d'alta velocitat han facilitat la implementació d'entorns sensibles al context, com les cases i les ciutats intel·ligents, capaços d'adaptar-se a les necessitats dels ciutadans. La interacció entre la computació ubiqua i els entorns sensibles al context va obrir la porta al paradigma de la salut intel·ligent, centrat en la prestació de serveis de salut personalitzats i de valor afegit mitjançant l'explotació de grans quantitats de dades sanitàries, de mobilitat i contextuals. No obstant, la gestió de dades sanitàries, des de la seva recollida fins a la seva anàlisi, planteja una sèrie de problemes desafiants a causa del seu caràcter altament confidencial. Aquesta tesi té per objectiu abordar diversos reptes de seguretat i privadesa dins del paradigma de la salut intel·ligent. Els resultats d'aquesta tesi pretenen ajudar a la comunitat científica a millorar la seguretat dels entorns intel·ligents del futur, així com la privadesa dels ciutadans respecte a les seves dades personals i sanitàries.Las tecnologías de la información y la comunicación han cambiado nuestras vidas de forma irreversible. La industria sanitaria, una de las industrias más grandes y de mayor crecimiento, está dedicando muchos esfuerzos por adoptar las últimas tecnologías en la práctica médica diaria. Por tanto, no es sorprendente que los paradigmas sanitarios estén en constante evolución en busca de servicios más eficientes, eficaces y sostenibles. En este contexto, el potencial de la computación ubicua mediante teléfonos inteligentes, relojes inteligentes, dispositivos wearables y otros dispositivos IoT ha sido fundamental para recopilar grandes volúmenes de datos, especialmente relacionados con el estado de salud y la localización de las personas. Las mejoras en las capacidades de detección junto con la aparición de redes de telecomunicaciones de alta velocidad han facilitado la implementación de entornos sensibles al contexto, como las casas y las ciudades inteligentes, capaces de adaptarse a las necesidades de los ciudadanos. La interacción entre la computación ubicua y los entornos sensibles al contexto abrió la puerta al paradigma de la salud inteligente, centrado en la prestación de servicios de salud personalizados y de valor añadido mediante la explotación significativa de grandes cantidades de datos sanitarios, de movilidad y contextuales. No obstante, la gestión de datos sanitarios, desde su recogida hasta su análisis, plantea una serie de cuestiones desafiantes debido a su naturaleza altamente confidencial. Esta tesis tiene por objetivo abordar varios retos de seguridad y privacidad dentro del paradigma de la salud inteligente. Los resultados de esta tesis pretenden ayudar a la comunidad científica a mejorar la seguridad de los entornos inteligentes del futuro, así como la privacidad de los ciudadanos con respecto a sus datos personales y sanitarios.Information and communication technologies have irreversibly changed our lives. The healthcare industry, one of the world’s largest and fastest-growing industries, is dedicating many efforts in adopting the latest technologies into daily medical practice. It is not therefore surprising that healthcare paradigms are constantly evolving seeking for more efficient, effective and sustainable services. In this context, the potential of ubiquitous computing through smartphones, smartwatches, wearables and IoT devices has become fundamental to collect large volumes of data, including people's health status and people’s location. The enhanced sensing capabilities together with the emergence of high-speed telecommunication networks have facilitated the implementation of context-aware environments, such as smart homes and smart cities, able to adapt themselves to the citizens needs. The interplay between ubiquitous computing and context-aware environments opened the door to the so-called smart health paradigm, focused on the provision of added-value personalised health services by meaningfully exploiting vast amounts of health, mobility and contextual data. However, the management of health data, from their gathering to their analysis, arises a number of challenging issues due to their highly confidential nature. In particular, this dissertation addresses several security and privacy challenges within the smart health paradigm. The results of this dissertation are intended to help the research community to enhance the security of the intelligent environments of the future as well as the privacy of the citizens regarding their personal and health data

Leveraging Resources on Anonymous Mobile Edge Nodes

Smart devices have become an essential component in the life of mankind. The quick rise of smartphones, IoTs, and wearable devices enabled applications that were not possible few years ago, e.g., health monitoring and online banking. Meanwhile, smart sensing laid the infrastructure for smart homes and smart cities. The intrusive nature of smart devices granted access to huge amounts of raw data. Researchers seized the moment with complex algorithms and data models to process the data over the cloud and extract as much information as possible. However, the pace and amount of data generation, in addition to, networking protocols transmitting data to cloud servers failed short in touching more than 20% of what was generated on the edge of the network. On the other hand, smart devices carry a large set of resources, e.g., CPU, memory, and camera, that sit idle most of the time. Studies showed that for plenty of the time resources are either idle, e.g., sleeping and eating, or underutilized, e.g. inertial sensors during phone calls. These findings articulate a problem in processing large data sets, while having idle resources in the close proximity. In this dissertation, we propose harvesting underutilized edge resources then use them in processing the huge data generated, and currently wasted, through applications running at the edge of the network. We propose flipping the concept of cloud computing, instead of sending massive amounts of data for processing over the cloud, we distribute lightweight applications to process data on users\u27 smart devices. We envision this approach to enhance the network\u27s bandwidth, grant access to larger datasets, provide low latency responses, and more importantly involve up-to-date user\u27s contextual information in processing. However, such benefits come with a set of challenges: How to locate suitable resources? How to match resources with data providers? How to inform resources what to do? and When? How to orchestrate applications\u27 execution on multiple devices? and How to communicate between devices on the edge? Communication between devices at the edge has different parameters in terms of device mobility, topology, and data rate. Standard protocols, e.g., Wi-Fi or Bluetooth, were not designed for edge computing, hence, does not offer a perfect match. Edge computing requires a lightweight protocol that provides quick device discovery, decent data rate, and multicasting to devices in the proximity. Bluetooth features wide acceptance within the IoT community, however, the low data rate and unicast communication limits its use on the edge. Despite being the most suitable communication protocol for edge computing and unlike other protocols, Bluetooth has a closed source code that blocks lower layer in front of all forms of research study, enhancement, and customization. Hence, we offer an open source version of Bluetooth and then customize it for edge computing applications. In this dissertation, we propose Leveraging Resources on Anonymous Mobile Edge Nodes (LAMEN), a three-tier framework where edge devices are clustered by proximities. On having an application to execute, LAMEN clusters discover and allocate resources, share application\u27s executable with resources, and estimate incentives for each participating resource. In a cluster, a single head node, i.e., mediator, is responsible for resource discovery and allocation. Mediators orchestrate cluster resources and present them as a virtually large homogeneous resource. For example, two devices each offering either a camera or a speaker are presented outside the cluster as a single device with both camera and speaker, this can be extended to any combination of resources. Then, mediator handles applications\u27 distribution within a cluster as needed. Also, we provide a communication protocol that is customizable to the edge environment and application\u27s need. Pushing lightweight applications that end devices can execute over their locally generated data have the following benefits: First, avoid sharing user data with cloud server, which is a privacy concern for many of them; Second, introduce mediators as a local cloud controller closer to the edge; Third, hide the user\u27s identity behind mediators; and Finally, enhance bandwidth utilization by keeping raw data at the edge and transmitting processed information. Our evaluation shows an optimized resource lookup and application assignment schemes. In addition to, scalability in handling networks with large number of devices. In order to overcome the communication challenges, we provide an open source communication protocol that we customize for edge computing applications, however, it can be used beyond the scope of LAMEN. Finally, we present three applications to show how LAMEN enables various application domains on the edge of the network. In summary, we propose a framework to orchestrate underutilized resources at the edge of the network towards processing data that are generated in their proximity. Using the approaches explained later in the dissertation, we show how LAMEN enhances the performance of applications and enables a new set of applications that were not feasible

Robust, Resilient Networked Communication in Challenged Environments

In challenged environments, digital communication infrastructure may be difficult or even impossible to access. This is especially true in rural and developing regions, as well as in any region during a time of political or environmental crisis. We advance the state of the art in wireless networking and security to design networks and applications that rapidly assess changing networking conditions to restore communication and provide local situational awareness. This dissertation examines new systems for responding to current and emerging needs for wireless networks. This work looks across the wireless ecosystem of widely deployed standards. We develop new tools to improve network assessment and to provide robust and reliable network communication. By incorporating new technological breakthroughs, such as the wide commercial success of Unmanned Aircraft Systems (UAS), we introduce novel methods and systems for existing wireless standards for these challenged networks. We assess how existing technologies and standards function in difficult environments: lacking end-end Internet connectivity, experiencing overload or other resource constraints, and operating in three dimensional space. Through this lens, we demonstrate how to optimize networks to serve marginalized communities outside of first world urban cities and make our networks resilient to natural and political crisis that threaten communication

IoT Networking: Path to Ubiquitous Connectivity

University of Minnesota Ph.D. dissertation. August 2019. Major: Computer Science. Advisor: Tian He. 1 computer file (PDF); xii, 105 pages.Internet of Things (IoT) is upon us with the number of IoT connected devices reach- ing 17.68 billion in the year 2016 and keeps an increasing rate of 17%. The popularity of IoT brings the prosperity and diversity of wireless technologies as one of its founda- tions. Existing wireless technologies, such as WiFi, Bluetooth, and LTE, are evolving and new technologies, such as SigFox and LoRa, are proposed to satisfy various needs under emerging application scenarios. For example, WiFi is evolving to provide higher throughput with the novel 802.11ac technology and the Bluetooth SIG has proposed the Bluetooth Low Energy (BLE) technology to support low-power applications. However, wireless technologies are victims of their own success. The vastly increasing wireless devices compete for the limited wireless spectrum and result in the performance degradation of each device. What makes it worse is that diverse wireless devices are using heterogeneous PHY and MAC layers designs which are not compliant with each other. As a result, sophisticated wireless coordination methods working well for each homogeneous technology are not applicable in the heterogeneous wireless scenario for the failure to communicate among heterogeneous devices. This dissertation aims at fundamentally solving the burden of communication in today’s heterogeneous wireless environment. Specifically, we try to build direct communication among heterogeneous wireless technologies, referred to as the cross-technology communication (CTC). It is counter-intuition and long believed impossible, but we find two opportunities in both the packet level and physical (PHY) layer to make the challenging mission possible. First, wireless devices are commonly able to do energy-sensing of wireless packets in the air. Energy sensing is capable to figure out packet-level information, such as the packet duration and timing. Based on the energy-sensing capability, we design DCTC, a CTC technology that piggybacks cross-technology messages within the timing of transmitted wireless packets. Specifically, we slightly perturb the timing of packets emitted from a wireless device to form detectable energy patterns to establish CTC. Testbed evaluation has shown that we can successfully transmit information at 760bps while keeping the delay of each packet no longer than 0.5ms under any traffic pattern. Second, in the PHY layer, high-end wireless technologies are flexible, i.e., a larger symbol set, in the modulation and demodulation. With careful choices of symbols, those wireless technologies are able to emulate and decode the PHY layer signal of a low-end one. We propose two systems BlueBee and XBee which aim at building direct com- munication between two heterogeneous IoT technologies, Bluetooth and ZigBee, with the idea of signal emulation and cross-decoding respectively. The former achieves signal emulation by carefully choosing the Bluetooth payload bits so that the output signal emulates a legitimate ZigBee packet which can be successfully demodulated by a com- modity ZigBee devices without any changes. The latter proposes a general method to support the bidirectional communication in the PHY-layer CTC by moving the complex- ity to the high-end receiver for the demodulation of signal from a low-end transmitter. Our testbed evaluation has shown that our technologies successfully boost the data rate of the state of the arts by over 10,000x times, which is approaching the ZigBee standard. This result makes CTC possible to play more roles in real-time applications, such as network coordination. In summary, this dissertation provides a new communication paradigm in a heteroge- neous wireless environment, which is to provide direct communication for heterogeneous wireless devices. Such communication is built upon two opportunities: (i) wireless de- vices are capable to sense energy in the air so that specifically designed energy patterns can transmit cross-technology information; (ii) a high-end wireless technology is more flexible and possible to emulate and demodulate the signal from a low-end technology for communication. The technologies developed in the dissertation will be the build- ing blocks for the future designs of efficient channel coordination and ubiquitous data exchange among heterogeneous wireless devices

Modelling and optimisation of resource usage in an IoT enabled smart campus

University campuses are essentially a microcosm of a city. They comprise diverse facilities such as residences, sport centres, lecture theatres, parking spaces, and public transport stops. Universities are under constant pressure to improve efficiencies while offering a better experience to various stakeholders including students, staff, and visitors. Nonetheless, anecdotal evidence indicates that campus assets are not being utilized efficiently, often due to the lack of data collection and analysis, thereby limiting the ability to make informed decisions on the allocation and management of resources. Advances in the Internet of Things (IoT) technologies that can sense and communicate data from the physical world, coupled with data analytics and Artificial intelligence (AI) that can predict usage patterns, have opened up new opportunities for organizations to lower cost and improve user experience. This thesis explores this opportunity via theory and experimentation using UNSW Sydney as a living laboratory. The building blocks of this thesis consist of three pillars of execution, namely, IoT deployment, predictive modelling, and optimization. Together, these components create an end-to-end framework that provides informed decisions to estate manager in regards to the optimal allocation of campus resources. The main contributions of this thesis are three application domains, which lies on top of the execution pillars, defining campus resources as classrooms, car parks, and transit buses. Specifically, our contributions are: i) We evaluate several IoT occupancy sensing technologies and instrument 9 lecture halls of varying capacities with the most appropriate sensing solution. The collected data provides us with insights into attendance patterns, such as cancelled lectures and class tests, of over 250 courses. We then develop predictive models using machine learning algorithms and quantile regression technique to predict future attendance patterns. Finally, we propose an intelligent optimisation model that allows allocations of classes to rooms based on the dynamics of predicted attendance as opposed to static enrolment number. We show that the data-driven assignment of classroom resources can achieve a potential saving in room cost of over 10\% over the course of a semester, while incurring a very low risk of disrupting student experience due to classroom overflow; ii) We instrument a car park with IoT sensors for real-time monitoring of parking demand and comprehensively analyse the usage data spanning over 15 months. We then develop machine learning models to forecast future parking demand at multiple forecast horizons ranging from 1 day to 10 weeks, our models achieve a mean absolute error (MAE) of 4.58 cars per hour. Finally, we propose a novel optimal allocation framework that allows campus manager to re-dimension the car park to accommodate new paradigms of car use while minimizing the risk of rejecting users and maintaining a certain level of revenue from the parking infrastructure; iii) We develop sensing technology for measuring an outdoor orderly queue using ultrasonic sensor and LoRaWAN, and deploy the solution at an on campus bus stop. Our solution yields a reasonable accuracy with MAE of 10.7 people for detecting a queue length of up to 100 people. We then develop an optimisation model to reschedule bus dispatch times based on the actual dynamics of passenger demand. The result suggests that a potential wait time reduction of 42.93% can be achieved with demand-driven bus scheduling. Taken together, our contributions demonstrates that there are significant resource efficiency gains to be realised in a smart-campus that employs IoT sensing coupled with predictive modelling and dynamic optimisation algorithms

Modelling and optimisation of resource usage in an IoT enabled smart campus

University campuses are essentially a microcosm of a city. They comprise diverse facilities such as residences, sport centres, lecture theatres, parking spaces, and public transport stops. Universities are under constant pressure to improve efficiencies while offering a better experience to various stakeholders including students, staff, and visitors. Nonetheless, anecdotal evidence indicates that campus assets are not being utilized efficiently, often due to the lack of data collection and analysis, thereby limiting the ability to make informed decisions on the allocation and management of resources. Advances in the Internet of Things (IoT) technologies that can sense and communicate data from the physical world, coupled with data analytics and Artificial intelligence (AI) that can predict usage patterns, have opened up new opportunities for organizations to lower cost and improve user experience. This thesis explores this opportunity via theory and experimentation using UNSW Sydney as a living laboratory. The building blocks of this thesis consist of three pillars of execution, namely, IoT deployment, predictive modelling, and optimization. Together, these components create an end-to-end framework that provides informed decisions to estate manager in regards to the optimal allocation of campus resources. The main contributions of this thesis are three application domains, which lies on top of the execution pillars, defining campus resources as classrooms, car parks, and transit buses. Specifically, our contributions are: i) We evaluate several IoT occupancy sensing technologies and instrument 9 lecture halls of varying capacities with the most appropriate sensing solution. The collected data provides us with insights into attendance patterns, such as cancelled lectures and class tests, of over 250 courses. We then develop predictive models using machine learning algorithms and quantile regression technique to predict future attendance patterns. Finally, we propose an intelligent optimisation model that allows allocations of classes to rooms based on the dynamics of predicted attendance as opposed to static enrolment number. We show that the data-driven assignment of classroom resources can achieve a potential saving in room cost of over 10\% over the course of a semester, while incurring a very low risk of disrupting student experience due to classroom overflow; ii) We instrument a car park with IoT sensors for real-time monitoring of parking demand and comprehensively analyse the usage data spanning over 15 months. We then develop machine learning models to forecast future parking demand at multiple forecast horizons ranging from 1 day to 10 weeks, our models achieve a mean absolute error (MAE) of 4.58 cars per hour. Finally, we propose a novel optimal allocation framework that allows campus manager to re-dimension the car park to accommodate new paradigms of car use while minimizing the risk of rejecting users and maintaining a certain level of revenue from the parking infrastructure; iii) We develop sensing technology for measuring an outdoor orderly queue using ultrasonic sensor and LoRaWAN, and deploy the solution at an on campus bus stop. Our solution yields a reasonable accuracy with MAE of 10.7 people for detecting a queue length of up to 100 people. We then develop an optimisation model to reschedule bus dispatch times based on the actual dynamics of passenger demand. The result suggests that a potential wait time reduction of 42.93% can be achieved with demand-driven bus scheduling. Taken together, our contributions demonstrates that there are significant resource efficiency gains to be realised in a smart-campus that employs IoT sensing coupled with predictive modelling and dynamic optimisation algorithms

Internet of Things From Hype to Reality

The Internet of Things (IoT) has gained significant mindshare, let alone attention, in academia and the industry especially over the past few years. The reasons behind this interest are the potential capabilities that IoT promises to offer. On the personal level, it paints a picture of a future world where all the things in our ambient environment are connected to the Internet and seamlessly communicate with each other to operate intelligently. The ultimate goal is to enable objects around us to efficiently sense our surroundings, inexpensively communicate, and ultimately create a better environment for us: one where everyday objects act based on what we need and like without explicit instructions

Smart Sensor Technologies for IoT

The recent development in wireless networks and devices has led to novel services that will utilize wireless communication on a new level. Much effort and resources have been dedicated to establishing new communication networks that will support machine-to-machine communication and the Internet of Things (IoT). In these systems, various smart and sensory devices are deployed and connected, enabling large amounts of data to be streamed. Smart services represent new trends in mobile services, i.e., a completely new spectrum of context-aware, personalized, and intelligent services and applications. A variety of existing services utilize information about the position of the user or mobile device. The position of mobile devices is often achieved using the Global Navigation Satellite System (GNSS) chips that are integrated into all modern mobile devices (smartphones). However, GNSS is not always a reliable source of position estimates due to multipath propagation and signal blockage. Moreover, integrating GNSS chips into all devices might have a negative impact on the battery life of future IoT applications. Therefore, alternative solutions to position estimation should be investigated and implemented in IoT applications. This Special Issue, “Smart Sensor Technologies for IoT” aims to report on some of the recent research efforts on this increasingly important topic. The twelve accepted papers in this issue cover various aspects of Smart Sensor Technologies for IoT

Machine Learning Techniques for Device-Free Indoor Person Tracking

L'abstract è presente nell'allegato / the abstract is in the attachmen