Sebastián Echeverría, G. Lewis, Craig Mazzotta, Kyle O'Meara, Keegan Williams, Marc Novakouski, Amit Vasudevan, Matthew McCormack, V. Sekar
{"title":"kalki++:一个可扩展的物联网安全平台","authors":"Sebastián Echeverría, G. Lewis, Craig Mazzotta, Kyle O'Meara, Keegan Williams, Marc Novakouski, Amit Vasudevan, Matthew McCormack, V. Sekar","doi":"10.1109/WF-IoT51360.2021.9595004","DOIUrl":null,"url":null,"abstract":"Internet of Things (IoT) security remains a challenge due to device vulnerabilities and untrusted supply chains, often limiting the benefits that organizations can obtain from integrating novel IoT devices to support business goals and enhance user experience. To that effect we developed KalKi: an IoT security platform that uses software-defined networking (SDN) concepts and constructs to create per-device defenses that enable integration of untrusted, off-the-shelf IoT devices. However, KalKi had limitations related to performance, scalability, and usability. This paper presents KalKi++, an evolution of KalKi that improves the performance, scalability and usability of the platform by orders of magnitude, with the added benefit of now being able to run on resource-limited hardware and support a larger number of use cases. We present the new architecture, enhanced threat model, and evaluation results for the new platform.","PeriodicalId":184138,"journal":{"name":"2021 IEEE 7th World Forum on Internet of Things (WF-IoT)","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-06-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"KalKi++: A Scalable and Extensible IoT Security Platform\",\"authors\":\"Sebastián Echeverría, G. Lewis, Craig Mazzotta, Kyle O'Meara, Keegan Williams, Marc Novakouski, Amit Vasudevan, Matthew McCormack, V. Sekar\",\"doi\":\"10.1109/WF-IoT51360.2021.9595004\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Internet of Things (IoT) security remains a challenge due to device vulnerabilities and untrusted supply chains, often limiting the benefits that organizations can obtain from integrating novel IoT devices to support business goals and enhance user experience. To that effect we developed KalKi: an IoT security platform that uses software-defined networking (SDN) concepts and constructs to create per-device defenses that enable integration of untrusted, off-the-shelf IoT devices. However, KalKi had limitations related to performance, scalability, and usability. This paper presents KalKi++, an evolution of KalKi that improves the performance, scalability and usability of the platform by orders of magnitude, with the added benefit of now being able to run on resource-limited hardware and support a larger number of use cases. We present the new architecture, enhanced threat model, and evaluation results for the new platform.\",\"PeriodicalId\":184138,\"journal\":{\"name\":\"2021 IEEE 7th World Forum on Internet of Things (WF-IoT)\",\"volume\":\"56 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-06-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 IEEE 7th World Forum on Internet of Things (WF-IoT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WF-IoT51360.2021.9595004\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE 7th World Forum on Internet of Things (WF-IoT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WF-IoT51360.2021.9595004","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
KalKi++: A Scalable and Extensible IoT Security Platform
Internet of Things (IoT) security remains a challenge due to device vulnerabilities and untrusted supply chains, often limiting the benefits that organizations can obtain from integrating novel IoT devices to support business goals and enhance user experience. To that effect we developed KalKi: an IoT security platform that uses software-defined networking (SDN) concepts and constructs to create per-device defenses that enable integration of untrusted, off-the-shelf IoT devices. However, KalKi had limitations related to performance, scalability, and usability. This paper presents KalKi++, an evolution of KalKi that improves the performance, scalability and usability of the platform by orders of magnitude, with the added benefit of now being able to run on resource-limited hardware and support a larger number of use cases. We present the new architecture, enhanced threat model, and evaluation results for the new platform.