Security in IoT pairing & authentication protocols, a threat model and a case study analysis

The Internet of Things has changed the way we interact with the environment around us in our daily life, and it is increasingly common to find more than one IoT device in our home. However, the current design approaches adopted by the vendors are more oriented towards customer usability than to security. This often results in more and more devices exposing serious security problems. This work focuses on the security implications, i.e. the threats and the risks, of the current IoT pairing mechanisms and represents a step forward in the definition of our automated penetration testing methodology. In addition to the general threat model for a general IoT pairing process, we present the analysis of a QR code-based pairing mechanism implemented by a class of devices taken from the real market, which led to the identification of two vulnerabilities, one of which publicly disclosed as CVE-2021-27941

Toward the automation of threat modeling and risk assessment in IoT systems

The Internet of Things (IoT) has recently become one of the most relevant emerging technologies in the IT landscape. IoT systems are characterized by the high heterogeneity of involved architectural components (e.g., device platforms, services, networks, architectures) and involve a multiplicity of application domains. In the IoT scenario, the identification of specific security requirements and the security design are very complex and expensive tasks, since they heavily depend on the configuration deployment actually in place and require security experts. In order to overcome these issues, we propose an approach aimed at supporting the security analysis of an IoT system by means of an almost completely automated process for threat modeling and risk assessment, which also helps identify the security controls to implement in order to mitigate existing security risks. We demonstrate the effectiveness of the approach by discussing its application to a home automation system, built on top of commercial IoT products

Polarization and cross section of midrapidity J/psi production in p plus p collisions at root s=510 GeV

The PHENIX experiment has measured the spin alignment for inclusive J/psi -> e(+) e(-) decays in protonproton collisions at root s = 510 GeV at midrapidity. The angular distributions have been measured in three different polarization frames, and the three decay angular coefficients have been extracted in a full two-dimensional analysis. Previously, PHENIX saw large longitudinal net polarization at forward rapidity at the same collision energy. This analysis at midrapidity, complementary to the previous PHENIX results, sees no sizable polarization in the measured transverse momentum range of 0.0 <p(T) <10.0 GeV/c. The results are consistent with a previous one-dimensional analysis at midrapidity at root s = 200 GeV. The transverse-momentum-dependent cross section for midrapidity J/psi production has additionally been measured, and after comparison to world data, a simple logarithmic dependence of the cross section on root s was found.Peer reviewe

Measurement of charged pion double spin asymmetries at midrapidity in longitudinally polarized p plus p collisions at root s=510 GeV

The PHENIX experiment at the Relativistic Heavy Ion Collider has measured the longitudinal double spin asymmetries, A(LL), for charged pions at midrapidity (vertical bar eta vertical bar <0.35) in longitudinally polarized p + p collisions at root s. = 510 GeV. These measurements are sensitive to the gluon spin contribution to the total spin of the proton in the parton momentum fraction x range between 0.04 and 0.09. One can infer the sign of the gluon polarization from the ordering of pion asymmetries with charge alone. The asymmetries are found to be consistent with global quantum-chromodynamics fits of deep-inelastic scattering and data at root s = 200 GeV, which show a nonzero positive contribution of gluon spin to the proton spin.Peer reviewe

Production of b(b)over-bar at forward rapidity in p plus p collisions at root s=510 GeV

The cross section of bottom quark-antiquark (b (b) over bar) production in p + p collisions at root s = 510 GeV is measured with the PHENIX detector at the Relativistic Heavy Ion Collider. The results are based on the yield of high mass, like-sign muon pairs measured within the PHENIX muon arm acceptance (1.2 mu +/-mu +/-)/dy = 0.16 +/- 0.01 (stat) +/- 0.02 (syst) +/- 0.02 (global) nb for like-sign muons in the rapidity and p(T) ranges 1.2 1 GeV/c, and dimuon mass of 5-10 GeV/c(2). The extrapolated total cross section at this energy for b (b) over bar production is 13.1 +/- 0.6 (stat) +/- 1.5 (syst) +/- 2.7 (global) mu b. The total cross section is compared to a perturbative quantum chromodynamics calculation and is consistent within uncertainties. The azimuthal opening angle between muon pairs from b (b) over bar decays and their p(T) distributions are compared to distributions generated using PS PYTHIA6, which includes next-to-leading order processes. The azimuthal correlations and pair p(T) distribution are not very well described by PYTHIA calculations, but are still consistent within uncertainties. Flavor creation and flavor excitation subprocesses are favored over gluon splitting.Peer reviewe

J/psi and psi(2S) production at forward rapidity in p plus p collisions at root s=510 GeV

The PHENIX experiment at the Relativistic Heavy Ion Collider has measured the differential cross section, mean transverse momentum, mean transverse momentum squared of inclusive J/psi, and cross section ratio of psi(2S) to J/psi at forward rapidity in p + p collisions at root s = 510 GeV via the dimuon decay channel. Comparison is made to inclusive J/psi cross sections measured at root s = 200 GeV and 2.76-13 TeV. The result is also compared to leading-order nonrelativistic QCD calculations coupled to a color-glass-condensate description of the low-x gluons in the proton at low transverse momentum (p(T)) and to next-to-leading order nonrelativistic QCD calculations for the rest of the p(T) range. These calculations overestimate the data at low p(T). While consistent with the data within uncertainties above approximate to 3 GeV/c, the calculations are systematically below the data. The total cross section times the branching ratio is BR d sigma(J/)(psi)(pp) / dy(1.2 <vertical bar y vertical bar <2.2,0 <p(T) <10 GeV/c) = 54.3 +/- 0.5(stat) +/- 5.5(syst) nb.Peer reviewe

Kinematic dependence of azimuthal anisotropies in p plus Au, d + Au, and He-3 +Au at root s(NN)=200 GeV

There is strong evidence for the formation of small droplets of quark-gluon plasma in p/d/ He-3 +Au collisions at the Relativistic Heavy Ion Collider (RHIC) and in p + p/Pb collisions at the Large Hadron Collider. In particular, the analysis of data at RHIC for different geometries obtained by varying the projectile size and shape has proved insightful. In the present analysis, we find excellent agreement with the previously published PHENIX at RHIC results on elliptical and triangular flow with an independent analysis via the two-particle correlation method, which has quite different systematic uncertainties and an independent code base. In addition, the results are extended to other detector combinations with different kinematic (pseudorapidity) coverage. These results provide additional constraints on contributions from nonflow and longitudinal decorrelations.Peer reviewe

Measurement of jet-medium interactions via direct photon-hadron correlations in Au plus Au and d plus Au collisions at root S-NN=200 GeV

We present direct photon-hadron correlations in 200 GeV/A Au + Au, d + Au, and p + p collisions, for direct photon p(T) from 5-12 GeV/c, collected by the PHENIX Collaboration in the years from 2006 to 2011. We observe no significant modification of jet fragmentation in d + Au collisions, indicating that cold nuclear matter effects are small or absent. Hadrons carrying a large fraction of the quark's momentum are suppressed in Au + Au compared to p + p and d + Au. As the momentum fraction decreases, the yield of hadrons in Au + Au increases to an excess over the yield in p + p collisions. The excess is at large angles and at low hadron p(T) and is most pronounced for hadrons associated with lower momentum direct photons. Comparison to theoretical calculations suggests that the hadron excess arises from medium response to energy deposited by jets.Peer reviewe

Production of pi(0) and eta mesons in U plus U collisions at root S-NN=192 GeV

The PHENIX experiment at the Relativistic Heavy Ion Collider measured pi(0) and eta mesons at midrapidity in U + U collisions at root S-NN = 192 GeV in a wide transverse momentum range. Measurements were performed in the pi(0)(eta) -> gamma gamma decay modes. A strong suppression of pi(0) and eta meson production at high transverse momentum was observed in central U + U collisions relative to binary scaled p + p results. Yields of pi(0) and eta mesons measured in U + U collisions show similar suppression pattern to those measured in Au + Au collisions at root S-NN = 200 GeV for similar numbers of participant nucleons. The eta/pi(0) ratios do not show dependence on centrality or transverse momentum and are consistent with previously measured values in hadron-hadron, hadron-nucleus, nucleus-nucleus, and e(+)e(-) collisions.Peer reviewe

Planting parallel program simulation on the cloud

n/