Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

I Still See You: Why Existing IoT Traffic Reshaping Fails

Su Wang, Keyang Yu, Qi Li, Dong Chen

TL;DR

The paper tackles the lack of a standardized method to compare IoT TA defenses and their privacy implications. It introduces ITEMTK, an open-source, end-to-end framework that benchmarks TA attacks and defenses across multiple dimensions, and develops a novel image-based TA attack that can infer device types and user activities even when defenses are applied. The study demonstrates that current defenses, including PrivacyGuard and PAROS, leave residual patterns detectable by the image-based attack, highlighting significant privacy gaps. ITEMTK thus provides a practical, extensible platform for rigorous benchmarking and encourages the development of stronger, multi-granularity defenses to better protect IoT user privacy.

Abstract

The Internet traffic data produced by the Internet of Things (IoT) devices are collected by Internet Service Providers (ISPs) and device manufacturers, and often shared with their third parties to maintain and enhance user services. Unfortunately, on-path adversaries could infer and fingerprint users' sensitive privacy information such as occupancy and user activities by analyzing these network traffic traces. While there's a growing body of literature on defending against this side-channel attack-malicious IoT traffic analytics (TA), there's currently no systematic method to compare and evaluate the comprehensiveness of these existing studies. To address this problem, we design a new low-cost, open-source system framework-IoT Traffic Exposure Monitoring Toolkit (ITEMTK) that enables people to comprehensively examine and validate prior attack models and their defending approaches. In particular, we also design a novel image-based attack capable of inferring sensitive user information, even when users employ the most robust preventative measures in their smart homes. Researchers could leverage our new image-based attack to systematize and understand the existing literature on IoT traffic analysis attacks and preventing studies. Our results show that current defending approaches are not sufficient to protect IoT device user privacy. IoT devices are significantly vulnerable to our new image-based user privacy inference attacks, posing a grave threat to IoT device user privacy. We also highlight potential future improvements to enhance the defending approaches. ITEMTK's flexibility allows other researchers for easy expansion by integrating new TA attack models and prevention methods to benchmark their future work.

I Still See You: Why Existing IoT Traffic Reshaping Fails

TL;DR

The paper tackles the lack of a standardized method to compare IoT TA defenses and their privacy implications. It introduces ITEMTK, an open-source, end-to-end framework that benchmarks TA attacks and defenses across multiple dimensions, and develops a novel image-based TA attack that can infer device types and user activities even when defenses are applied. The study demonstrates that current defenses, including PrivacyGuard and PAROS, leave residual patterns detectable by the image-based attack, highlighting significant privacy gaps. ITEMTK thus provides a practical, extensible platform for rigorous benchmarking and encourages the development of stronger, multi-granularity defenses to better protect IoT user privacy.

Abstract

The Internet traffic data produced by the Internet of Things (IoT) devices are collected by Internet Service Providers (ISPs) and device manufacturers, and often shared with their third parties to maintain and enhance user services. Unfortunately, on-path adversaries could infer and fingerprint users' sensitive privacy information such as occupancy and user activities by analyzing these network traffic traces. While there's a growing body of literature on defending against this side-channel attack-malicious IoT traffic analytics (TA), there's currently no systematic method to compare and evaluate the comprehensiveness of these existing studies. To address this problem, we design a new low-cost, open-source system framework-IoT Traffic Exposure Monitoring Toolkit (ITEMTK) that enables people to comprehensively examine and validate prior attack models and their defending approaches. In particular, we also design a novel image-based attack capable of inferring sensitive user information, even when users employ the most robust preventative measures in their smart homes. Researchers could leverage our new image-based attack to systematize and understand the existing literature on IoT traffic analysis attacks and preventing studies. Our results show that current defending approaches are not sufficient to protect IoT device user privacy. IoT devices are significantly vulnerable to our new image-based user privacy inference attacks, posing a grave threat to IoT device user privacy. We also highlight potential future improvements to enhance the defending approaches. ITEMTK's flexibility allows other researchers for easy expansion by integrating new TA attack models and prevention methods to benchmark their future work.
Paper Structure (29 sections, 7 equations, 10 figures, 5 tables)

This paper contains 29 sections, 7 equations, 10 figures, 5 tables.

Table of Contents

  1. Introduction
  2. Background and Related Work
  3. Background
  4. Privacy Threat Model
  5. IoT Traffic Reshaping Roadmap
  6. Summary and Insight
  7. Challenges
  8. Design
  9. System Design
  10. Traffic Data Preprocessing
  11. Sophisticated TA Attack Defending
  12. Intelligent Traffic Analytics (TA) Attacking
  13. Full Stack Evaluation
  14. Implementation
  15. Experimental Evaluation
  16. ...and 14 more sections

Figures (10)

  • Figure 1: The illustration of IoT traffic.
  • Figure 2: Privacy Threat Model.
  • Figure 3: The residual traffic patterns (in red and blue colors) after applying most recent TA defense work.
  • Figure 4: The proposed structure of ITEMTK framework.
  • Figure 5: The system structure of our image-based TA attack.
  • ...and 5 more figures