The Internet of Things, alongside mobile devices, represent the most rapidly growing sectors of the computing landscape.
While the proliferation of mobile phones, home automation devices, and Internet-connected critical infrastructure creates unprecedented opportunities for innovation,
this also exposes novel attack surfaces that must be better understood in order to provide adequate protetions.
The aim of our research in this space is two fold: first, to reason about the challenges of securing mobile and IoT devices;
second, to identify ways in which smart devices can be leveraged to address the broader challenges of system security.
Our recent achievements in this area include helping to protect the privacy of athletes that use fitness tracking devices,
uncovering new vulnerabilities in voice-activated IoT devices,
and introducing new methods of detecting misbehaving commercial drones.
- Wajih Ul Hassan, Saad Hussain, and Adam Bates. Analysis of Privacy Protections in Fitness Tracking Social Networks -or- You can run, but can you hide?. USENIX Security Symposium, August 2018.
- Deepak Kumar, Riccardo Paccagnella, Paul Murley, Eric Hennenfent, Joshua Mason, Adam Bates, and Michael Bailey. Skill Squatting Attacks on Amazon Alexa. USENIX Security Symposium, August 2018.
- Tianyuan Liu, Avesta Hojjati, Adam Bates and Klara Nahrstedt. AliDrone: Enabling Trustworthy Proof-of-Alibi for Commercial Drone Compliance. IEEE International Conference on Distributed Computing Systems, July 2018.
- Qi Wang, Wajih Ul Hassan, Adam Bates, and Carl Gunter. Fear and Logging in the Internet of Things. Network and Distributed System Security Symposium (NDSS), February 2018.
- Bradley Reaves, Nolen Scaife, Adam Bates, Kevin R.B. Butler, and Patrick Traynor. Mo(bile) Money, Mo(bile) Problems:Analysis of Branchless Banking Applications in the Developing World. USENIX Security Symposium, August 2015.