Dagstuhl Seminar 24312
Security and Privacy of Current and Emerging IoT Devices and Systems
( Jul 28 – Aug 02, 2024 )
Permalink
Organizers
- Bruno Crispo (University of Trento, IT)
- Alexandra Dmitrienko (Universität Würzburg, DE)
- Gene Tsudik (University of California - Irvine, US)
- Wenyuan Xu (Zhejiang University - Hangzhou, CN)
Contact
- Michael Gerke (for scientific matters)
- Christina Schwarz (for administrative matters)
Shared Documents
- Dagstuhl Materials Page (Use personal credentials as created in DOOR to log in)
Over the past two decades, there has been a significant surge in the popularity of Internet-of-Things (IoT) devices. They have become ubiquitous in various settings, including private (e.g., homes, offices, and factories), semi-private (e.g., rentals and hotels), as well as public (e.g., cultural, entertainment, and transportation). They also play an important role in applications domains, such as military, agriculture, industrial processes, and vehicular automation. In many settings, IoT devices perform safety-critical functions. Furthermore, they are often interconnected and/or connected to the global Internet.
On the lower end, IoT devices are usually constructed using low-end micro-controller units (MCUs), which are subject to constraints on cost, size, and energy. Compared to their higher-end counterparts, these devices tend to lack security features. Due to the sensitive information they collect and their frequent involvement in safety-critical actuation tasks, they represent attractive targets for attacks. These attacks span a wide spectrum of concerns, ranging from privacy associated with sensing to safety and security in the context of actuation. There have even been instances of large-scale device zombification, exemplified by the infamous Mirai botnet.
This Dagstuhl Seminar aims to explore the landscape of attacks on IoT devices, discuss potential research directions for effective countermeasures, and facilitate the relationship between academia and industry in addressing these challenges.
Specific topics to be discussed include:
- Balancing mission-criticality, safety, and security in system design
- The role of secure hardware (Trusted Computing) in IoT security
- Realizing security/privacy services across hardware and software boundaries
- Addressing the scalability challenge in securing large IoT deployments
- The value of formal methods and verification in IoT security
- The lifecycle of digital twins for IoT devices
- Security challenges in unattended environments, such as low-orbit satellites
- Privacy implications of human/IoT relationships and data collection
- Security and privacy challenges in instrumented spaces
- Bridging the gap between academic research and industry needs
The seminar aims to foster collaboration between academia and industry to address the evolving security and privacy concerns of IoT devices and systems in an increasingly interconnected world.
- Z. Berkay Celik (Purdue University - West Lafayette, US) [dblp]
- Alfred Chen (University of California, Irvine, US) [dblp]
- Bruno Crispo (University of Trento, IT) [dblp]
- Ivan De Oliveira Nunes (Rochester Institute of Technology, US) [dblp]
- Xuhua Ding (SMU - Singapore, SG) [dblp]
- Alexandra Dmitrienko (Universität Würzburg, DE) [dblp]
- Jan-Erik Ekberg (Huawei Technologies - Helsinki, FI) [dblp]
- Earlence Fernandes (University of California - San Diego, US) [dblp]
- Kevin Fu (Northeastern University - Boston, US) [dblp]
- Jorge Guajardo Merchan (Robert Bosch LLC - Pittsburgh, US) [dblp]
- David Hock (Infosim - Würzburg, DE) [dblp]
- Murtuza Jadliwala (University of Texas - San Antonio, US) [dblp]
- Yongdae Kim (KAIST - Daejeon, KR) [dblp]
- Farinaz Koushanfar (University of California at San Diego, US) [dblp]
- Veelasha Moonsamy (Ruhr-Universität Bochum, DE) [dblp]
- Surya Nepal (CSIRO - Eveleigh, AU) [dblp]
- Panagiotis Papadimitratos (KTH Royal Institute of Technology - Kista, SE) [dblp]
- Christina Pöpper (New York University - Abu Dhabi, AE) [dblp]
- Sara Rampazzi (University of Florida - Gainesville, US) [dblp]
- Kasper Rasmussen (University of Oxford, GB) [dblp]
- Stefanie Roos (RPTU Kaiserslautern-Landau, DE) [dblp]
- Ahmad-Reza Sadeghi (TU Darmstadt, DE) [dblp]
- Nader Sehatbakhsh (University of California at Los Angeles, US) [dblp]
- Christoph Sendner (Universität Würzburg, DE) [dblp]
- Gene Tsudik (University of California - Irvine, US) [dblp]
- Markus Wamser (Ingenics Digital - Gräfelfing, DE) [dblp]
- Wenyuan Xu (Zhejiang University - Hangzhou, CN) [dblp]
Classification
- Cryptography and Security
- Hardware Architecture
Keywords
- IoT
- CPS
- Smart Devices
- Security
- Privacy
- Mission Criticality
- Safety
- Resilience
- Trusted Computing
- Computer Architecture