3 research outputs found

    Penetration Testing of Android-based Smartphones

    No full text
    The purpose of this work has been to perform a security analysis of Android-based Smartphones. Smartphone usage and adaptation are increasing day by day with a variety of applications. These applications can be very critical in nature such as mobile banking, and mobile payment systems and users are often unknowing about the security risks involved in such applications. Android, an open source operating system, is rapidly increasing in the Smartphone industry. It has already beaten the most popular mobile operating systems, like RIM, iOS, Windows Mobile and even Symbian, which ruled the mobile market for more than a decade. In this thesis, we have analysed the architecture of the Android operating system and tested its security through penetration testing. We have picked the most popular and recommended tools to test the security in the TCP/IP suite and different attacks have been performed on three different Android versions. The thesis also contains a discussion about our findings, how secure the Android system is and how much trust can be placed on it while using it

    Penetration Testing of Android-based Smartphones

    No full text
    The purpose of this work has been to perform a security analysis of Android-based Smartphones. Smartphone usage and adaptation are increasing day by day with a variety of applications. These applications can be very critical in nature such as mobile banking, and mobile payment systems and users are often unknowing about the security risks involved in such applications. Android, an open source operating system, is rapidly increasing in the Smartphone industry. It has already beaten the most popular mobile operating systems, like RIM, iOS, Windows Mobile and even Symbian, which ruled the mobile market for more than a decade. In this thesis, we have analysed the architecture of the Android operating system and tested its security through penetration testing. We have picked the most popular and recommended tools to test the security in the TCP/IP suite and different attacks have been performed on three different Android versions. The thesis also contains a discussion about our findings, how secure the Android system is and how much trust can be placed on it while using it

    Implementation of lightweight machine learning-based intrusion detection system on IoT devices of smart homes

    No full text
    Smart home devices, also known as IoT devices, provide significant convenience; however, they also present opportunities for attackers to jeopardize homeowners’ security and privacy. Securing these IoT devices is a formidable challenge because of their limited computational resources. Machine learning-based intrusion detection systems (IDSs) have been implemented on the edge and the cloud; however, IDSs have not been embedded in IoT devices. To address this, we propose a novel machine learning-based two-layered IDS for smart home IoT devices, enhancing accuracy and computational efficiency. The first layer of the proposed IDS is deployed on a microcontroller-based smart thermostat, which uploads the data to a website hosted on a cloud server. The second layer of the IDS is deployed on the cloud side for classification of attacks. The proposed IDS can detect the threats with an accuracy of 99.50% at cloud level (multiclassification). For real-time testing, we implemented the Raspberry Pi 4-based adversary to generate a dataset for man-in-the-middle (MITM) and denial of service (DoS) attacks on smart thermostats. The results show that the XGBoost-based IDS detects MITM and DoS attacks in 3.51 ms on a smart thermostat with an accuracy of 97.59%.</p
    corecore