Preservando a Privacidade na Internet das Coisas com Pseudônimos Usando SDN
Resumo
Dispositivos da Internet das coisas (Internet of Things, IoT) geralmente capturam informações sobre os seus usuários, gerando riscos à privacidade. Observadores podem inferir informações sobre suas vítimas a partir dos endereços de dispositivos IoT. Neste artigo, apresentamos uma solução de pseudo-anonimização baseada em redes definidas por software que oculta os endereços. Avaliamos essa solução com tráfego IoT real proveniente de diversos dispositivos. Os resultados mostram que a solução proposta contribui para aprimorar a privacidade dos usuários IoT. Testes de hipóteses baseados no Wilcoxon Signed-Rank Test atestam que o impacto ao desempenho da comunicação gerado pela solução é irrisório.
Referências
Arana, O., Garcia, F., Gomez, J., and Rangel, V. (2018). MSP: Providing location privacy in wlan networks with a mac swapping protocol. Computer Networks, 138:136 – 148.
Atzori, L., Iera, A., and Morabito, G. (2010). The internet of things: A survey. Computer Networks, 54(15):2787 – 2805.
Cabaj, K., Caviglione, L., Mazurczyk, W., Wendzel, S., Woodward, A., and Zander, S. (2018). The new threats of information hiding: the road ahead. CoRR, abs/1801.00694.
Davoli, L., Protskaya, Y., and Veltri, L. (2017). An anonymization protocol for the internet of things. In 2017 International Symposium on Wireless Communication Systems (ISWCS), pages 459–464.
Haas, Z. J. and Yousefpour, A. (2018). A privacy scheme for monitoring devices in the internet of things. CoRR, abs/1803.04453.
Liu, J., Zhang, C., and Fang, Y. (2018). EPIC: A differential privacy framework to defend smart homes against internet traffic analysis. IEEE Internet of Things Journal, 5(2):1206–1217.
Miettinen, M., Marchal, S., Hafeez, I., Asokan, N., Sadeghi, A. R., and Tarkoma, S. (2017). IoT SENTINEL: Automated device-type identification for security enforcement in iot. In 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS), pages 2177–2184.
Sharma, D. P., Kim, D. S., Yoon, S., Lim, H., Cho, J.-H., and Moore, T. J. (2018). Frvm: Flexible random virtual ip multiplexing in software-defined networks. In International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom), New York, NY, USA. IEEE.
Sivanathan, A., Sherratt, D., Gharakheili, H. H., Radford, A., Wijenayake, C., Vishwanath, A., and Sivaraman, V. (2017). Characterizing and classifying iot traffic in smart cities and campuses. In 2017 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 559–564.
Turner, A. (2011). Tcpreplay. [link].
Ullah, I., Shah, M. A., Wahid, A., Mehmood, A., and Song, H. (2018). ESOT: a new privacy model for preserving location privacy in internet of things. Telecommunication Systems, 67(4):553–575.
Wagner, I. and Eckhoff, D. (2018). Technical privacy metrics: A systematic survey. ACM Comput. Surv., 51(3):57:1–57:38.
Zeitz, K., Cantrell, M., Marchany, R., and Tront, J. (2018). Changing the game: A micro moving target IPv6 defense for the internet of things. IEEE Wireless Communications Letters, pages 1–1.
Zhu, T., Feng, D., Wang, F., Hua, Y., Shi, Q., Liu, J., Cheng, Y., and Wan, Y. (2017). Efficient anonymous communication in SDN-Based data center networks. IEEE/ACM Transactions on Networking, 25(6):3767–3780.
Atzori, L., Iera, A., and Morabito, G. (2010). The internet of things: A survey. Computer Networks, 54(15):2787 – 2805.
Cabaj, K., Caviglione, L., Mazurczyk, W., Wendzel, S., Woodward, A., and Zander, S. (2018). The new threats of information hiding: the road ahead. CoRR, abs/1801.00694.
Davoli, L., Protskaya, Y., and Veltri, L. (2017). An anonymization protocol for the internet of things. In 2017 International Symposium on Wireless Communication Systems (ISWCS), pages 459–464.
Haas, Z. J. and Yousefpour, A. (2018). A privacy scheme for monitoring devices in the internet of things. CoRR, abs/1803.04453.
Liu, J., Zhang, C., and Fang, Y. (2018). EPIC: A differential privacy framework to defend smart homes against internet traffic analysis. IEEE Internet of Things Journal, 5(2):1206–1217.
Miettinen, M., Marchal, S., Hafeez, I., Asokan, N., Sadeghi, A. R., and Tarkoma, S. (2017). IoT SENTINEL: Automated device-type identification for security enforcement in iot. In 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS), pages 2177–2184.
Sharma, D. P., Kim, D. S., Yoon, S., Lim, H., Cho, J.-H., and Moore, T. J. (2018). Frvm: Flexible random virtual ip multiplexing in software-defined networks. In International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom), New York, NY, USA. IEEE.
Sivanathan, A., Sherratt, D., Gharakheili, H. H., Radford, A., Wijenayake, C., Vishwanath, A., and Sivaraman, V. (2017). Characterizing and classifying iot traffic in smart cities and campuses. In 2017 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 559–564.
Turner, A. (2011). Tcpreplay. [link].
Ullah, I., Shah, M. A., Wahid, A., Mehmood, A., and Song, H. (2018). ESOT: a new privacy model for preserving location privacy in internet of things. Telecommunication Systems, 67(4):553–575.
Wagner, I. and Eckhoff, D. (2018). Technical privacy metrics: A systematic survey. ACM Comput. Surv., 51(3):57:1–57:38.
Zeitz, K., Cantrell, M., Marchany, R., and Tront, J. (2018). Changing the game: A micro moving target IPv6 defense for the internet of things. IEEE Wireless Communications Letters, pages 1–1.
Zhu, T., Feng, D., Wang, F., Hua, Y., Shi, Q., Liu, J., Cheng, Y., and Wan, Y. (2017). Efficient anonymous communication in SDN-Based data center networks. IEEE/ACM Transactions on Networking, 25(6):3767–3780.
Publicado
25/10/2018
Como Citar
PINHEIRO, Antonio J.; BURGARDT, Caio A. P.; CAMPELO, Divanilson R..
Preservando a Privacidade na Internet das Coisas com Pseudônimos Usando SDN. In: SIMPÓSIO BRASILEIRO DE SEGURANÇA DA INFORMAÇÃO E DE SISTEMAS COMPUTACIONAIS (SBSEG), 18. , 2018, Natal.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2018
.
p. 457-464.
DOI: https://doi.org/10.5753/sbseg.2018.4278.
