The SELIoT (SEcuring Lifecycle of Internet of Things) project proposes to address the currently pervasive lack of IoT security by a comprehensive approach that spans the entire lifecycle of an IoT device. Security of typical IoT devices is glaringly inadequate despite the fact that these devices have an unprecedented access to sensitive data and/or ability to control the environment. While previous results considered specific vulnerabilities or focused on basic security issues (e.g., key management), this project takes into account the unique context of IoT systems: starting with initial deployment (birth), continuing through normal operation (life) and lasting until repurposing, caused by, e.g., ownership change or disposal.

SELIoT is a project funded by the Academy of Finland (grant 309994) and the NSF (2017-2019) under the ausipecs of the WiFiUS program. It is a joint project between Aalto University, the University of Florida and the University of California Irvine.

Quick Links:

• Project Summary
• Dissemination of Research Results
• IoT Workshop, September 2017

News:

• May 2019: AuDI: Towards Autonomous IoT Device-Type Identification using Periodic Communication by Samuel Marchal, Markus Miettinen, Thien Duc Nguyen, Ahmad-Reza Sadeghi and N. Asokan, is published in IEEE JSAC Special Issue on Artificial Intelligence and Machine Learning for Networking and Communications, 2019.
• May 2019: DIoT: A Federated Self-learning Anomaly Detection System for IoT by Thien Duc Nguyen, Samuel Marchal, Markus Miettinen, Hossein Fereidooni, N. Asokan, and Ahmad-Reza Sadeghi, has been accepted to appear in the 39th IEEE International Conference on Distributed Computing Systems (ICDCS 2019), 2019. arXiv preprint arXiv:1804.07474
• April 2019: chownIoT: Enhancing IoT Privacy by Automated Handling of Ownership Change by Khan M.S.N., Marchal S., Buchegger S., Asokan N., has been published in Privacy and Identity Management. Fairness, Accountability, and Transparency in the Age of Big Data. Privacy and Identity 2018. IFIP Advances in Information and Communication Technology, vol 547. Springer, Cham.
• July 2018: “ASSURED: Architecture for Secure Software Update of Realistic Embedded Devices“ by N. Asokan, T. Nyman, N. Rattanavipanon, A-R. Sadeghi and G. Tsudik, has been accepted to appear in the program of EMSOFT’18 and will be published as a special issue of IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD).
• May 2018: “INVITED: Reconciling Remote Attestation and Safety-Critical Operation of Simple IoT Devices” by X. Carpent, K. Eldefrawy, N. Rattanavipanon, A. Sadeghi and G. Tsudik, and “Revisiting Context-Based Authentication in IoT“, by Markus Miettinen, Thien Duc Nguyen, N. Asokan, Ahmad-Reza Sadeghi, has been accepted for presentation and publication at the 55th Design Automation Conference (DAC), San Francisco, June 2018.
• April 2018: “Hello, Is It Me You’re Looking For? Differentiating Between Human and Electronic Speakers for Voice Interface Security“, by Logan Blue, Luis Vargas, Patrick Traynor, has been accepted for presentation and publication at the 11th ACM Conference on Security and Privacy in Wireless and Mobile Networks (ACM WiSec 2018).
• March 2018: “Temporal Consistency of Integrity-Ensuring Computations and Applications to Embedded Systems Security“, by K. Eldefrawy, X. Carpent, N. Rattanavipanon and G. Tsudik, and “2MA: Verifying Voice Commands via Two Microphone Authentication“, by Logan Blue, Hadi Abdullah, Luis Vargas, and Patrick Traynor, has been accepted for presentation and publication at the 13th ACM ASIA Conference on Information, Computer and Communications Security (ACM ASIACCS 2018).
• January 2018: “Remote Attestation of IoT Devices via SMARM: Suffled Measurements Agaist Roving Malware“, by X. Carpent, N. Rattanavipanon and G. Tsudik, has been accepted for presentation and publication at EEE Hardware Oriented Security and Trust (HOST), 2018.
• November 2017: “ERASMUS: Efficient Remote Attestation via Self-MEasurements for Unattended Settings“, by X. Carpent, N. Rattanavipanon and G. Tsudik, X. Carpent, N. Rattanavipanon and G. Tsudik, has been accepted for presentation and publication at IEEE/ACM Design, Automation, and Test in Europe (DATE), 2018.
• September 2017: IoT Security workshop (presentations)
  
• August 2017: On 7 September 2017, we will hold a public workshop to discuss progress in IoT security. Registration is free and open to anyone now!!
  
• June 2017: IoT Sentinel got the Best Poster Award at IEEE ICDCS ’17. Congratulations to Markus Miettinen, Samuel Marchal and the rest of the team!!
• June 2017: Samuel Marchal will co-chair the International Workshop on Secure Internet of Things (SIoT) collocated with ESORICS 2017. SIoT will be help in Oslo, Norway on September 15, 2017. Consider submitting your latest research on IoT security there (deadline is June 25, 2017)!
• May 2017: “HYDRA: HYbrid Design for Remote Attestation (Using a Formally Verified Microkernel)” has been accepted for publication at ACM WiSec’17!! See you in Boston, USA!
• April 2017: IoT Sentinel has been accepted for publication and demo at IEEE ICDCS’17!! Come to see our presentation in Atlanta, USA!
• April 2017: SELIoT project has been accepted for funding by AoF (grant 309994) and NSF!!