Judson Wilson
November 20, 2015 at 12:00 PM in 380 Soda Hall
Title: Auditing the Internet of Things: How to Eavesdrop on What Our Own Devices are Saying About Us
Abstract: Today, Internet of Things devices communicate confidentially with their manufacturer’s cloud services. The owner must trust that the device is not saying too much, or more than the manufacturer claims. We propose that consumers have the right and ability to eavesdrop on what their own things are saying about them: they should be able to monitor their devices with a read only monitor that preserves end to end authenticity and integrity of communication with the cloud. We find that the existing model of TLS does not support this use case, but that we can alter the way we use TLS to achieve our goals. We propose new systems to achieve our goal of auditable, read only TLS and compare them to alternatives that are possible if we loosen our goal of preserving the standard TLS protocol. Joint work with Keith Winstein, Philip Levis, Dan Boneh.
Bio: Judson Wilson received his B.S. in Mechanical Engineering from U.C. Berkeley in 2007. Afterwards he spent 5 years designing embedded electric power quality monitors at Power Standards Lab in Alameda, CA. He then began studies at Stanford University in 2012, earning an M.S. in Electrical Engineering, and spending summers at Apple, NVIDIA, and Bosch Research. He is currently researching systems software and networking in pursuit of a Ph.D. under the guidance of his advisor Philip Levis.