Welcome! This website documents research in Internet of Things and Cyber-Physical Systems Security. The research is primarily conducted by the University of Michigan and its collaborators at Microsoft Research, University of Illinois, University of Washington, University of California Berkeley, and Stony Brook University. We provide a few resources in the form of research papers, code, demo videos and frequently asked questions (FAQs).
- SmartThings Security Analysis: An analysis focused on security design of IoT platforms. Our findings include overprivilege and insufficient event protection.
- FlowFence: An information flow control (IFC) system for IoT apps.
- ContexIoT: A system that provides contextual permission prompts in SmartThings apps.
- Heimdall: A system that enables privacy-respecting collection of recommendation data from the phone and the built environment.
- Robust Physical Perturbations: Can real physical objects be manipulated in ways that cause DNN-based classifiers to misclassify them?
- Object Detector Attacks: Physical Adversarial Examples for state-of-the-art object detectors.
- DTAP: Clean-slate design for trigger-action platforms to support decentralized action integrity.