A vulnerability detection framework for IoT devices: Smart lock

• Published in: AIP Conference Proceedings
• Main Author: Zainudin A.F.I.M.; Awang N.F.; Marzukhi S.; Alsagoff S.N.; Tajuddin T.; Jarno A.D.
• Format: Conference paper
• Language: English
• Published: American Institute of Physics Inc. 2022
• Online Access: https://www.scopus.com/inward/record.uri?eid=2-s2.0-85143146714&doi=10.1063%2f5.0119779&partnerID=40&md5=c1e4388399596c3df0fd5d3b02e00839

With the current trend of Internet of Things (IoT), it normally related to the concept of the Smart Home system. Eventually, the Smart Home systems and devices are often operating together where the users' data are shared among the Smart Home ecosystem including the devices in order to automatically perform certain action based on the users' setting. For example, Home Automation system such as Smart Lock can help the users monitor their home remotely while avoiding the door left unlocked. However, as the Home Automation system devices are able to capture data via sensors and transmit data via the internet, this intrusive activity is possible to be attacked by the hackers. Hence, the hackers are granted a free access from any place and any time to attack the Home Automation system. Based on the analysis and observation from previous research on Penetration Testing and Security Assessment Framework, those study had offered a guideline for the proposed Vulnerability Detection Framework for IoT components and devices. The proposed framework can be implemented as a practice and exercise in performing security vulnerabilities assessment for the IoT devices particularly the Smart Lock system. The proposed framework is adapted from OWASP Firmware Security Testing Methodology and OCTAVE. © 2022 Author(s).