Collectively Enhancing IoT Security: A Privacy-Aware Crowd-Sourcing Approach


Security configurations remain challenging for trained administrators. Nowadays, due to the advent of the Internet of Things (IoT), untrained users operate numerous and heterogeneous Internet-facing services in manifold use case-specific scenarios. In this work, we close the growing gap between the complexity of IoT security configuration and the expertise of the affected users. To this end, we propose ColPSA, a platform for collective and privacy-aware security advice that allows users to optimize their configuration by exchanging information about what security can be realized given their IoT deployment and scenario.

Proceedings of the 16th International Symposium on Foundations and Practice of Security (FPS ‘23), December 11-13, 2023, Bordeaux, France