Being Hacked : Understanding Victims' Experiences of IoT Hacking

Asreen Rostami; Minna Vigren; Shahid Raza; Barry Brown

Being Hacked : Understanding Victims' Experiences of IoT Hacking

Asreen Rostami
, Minna Vigren
, Shahid Raza
, Barry Brown

Ei julkaistu Aalto-yliopiston affiliaatiolla

RISE Bioeconomy
Stockholm University
University of Copenhagen

Tutkimustuotos: Artikkeli kirjassa/konferenssijulkaisussa › Conference article in proceedings › Scientific › vertaisarvioitu

19 Sitaatiot (Scopus)

Abstrakti

From light bulbs to smart locks, IoT is increasingly embedded into our homes and lives. This opens up new vulnerabilities as IoT devices can be hacked and manipulated to cause harm or discomfort. In this paper we document users' experiences of having their IoT systems hacked through 210 self-reports from Reddit, device support forums, and Amazon review pages. These reports and the discussion around them show how uncertainty is at the heart of 'being hacked'. Hacks are sometimes difficult to detect, and users can mistake unusual IoT behaviour as evidence of a hack, yet this can still cause considerable emotional hurt and harm. In discussion, we shift from seeing hacks as technical system failings to be repaired, to seeing them as sites for care and user support. Such a shift in perspective opens a new front in designing for hacking - not just prevention but alleviating harm.

Alkuperäiskieli	Englanti
Otsikko	Proceedings of the 18th Symposium on Usable Privacy and Security, SOUPS 2022
Kustantaja	USENIX -The Advanced Computing Systems Association
Sivut	613-631
Sivumäärä	19
ISBN (elektroninen)	978-1-939133-30-4
Tila	Julkaistu - 2022
OKM-julkaisutyyppi	A4 Artikkeli konferenssijulkaisussa
Tapahtuma	Symposium on Usable Privacy and Security - Boston, Yhdysvallat Kesto: 7 elok. 2022 → 9 elok. 2022 Konferenssinumero: 18

Conference

Conference	Symposium on Usable Privacy and Security
Lyhennettä	SOUPS
Maa/Alue	Yhdysvallat
Kaupunki	Boston
Ajanjakso	07/08/2022 → 09/08/2022

Rahoitus

This research is partially funded by a Digital Futures postdoctoral research grant, and the Swedish Research Council (Vetenskapsrådet) under the project Securing Things (2017-04804: Säkra saker: Säkra sakernas Internet).

Muut tiedostot ja linkit

Siteeraa tätä

@inproceedings{6e4fdcc8e5b747518df49ae59e02807b,

title = "Being Hacked : Understanding Victims' Experiences of IoT Hacking",

abstract = "From light bulbs to smart locks, IoT is increasingly embedded into our homes and lives. This opens up new vulnerabilities as IoT devices can be hacked and manipulated to cause harm or discomfort. In this paper we document users' experiences of having their IoT systems hacked through 210 self-reports from Reddit, device support forums, and Amazon review pages. These reports and the discussion around them show how uncertainty is at the heart of 'being hacked'. Hacks are sometimes difficult to detect, and users can mistake unusual IoT behaviour as evidence of a hack, yet this can still cause considerable emotional hurt and harm. In discussion, we shift from seeing hacks as technical system failings to be repaired, to seeing them as sites for care and user support. Such a shift in perspective opens a new front in designing for hacking - not just prevention but alleviating harm.",

author = "Asreen Rostami and Minna Vigren and Shahid Raza and Barry Brown",

note = "Funding Information: This research is partially funded by a Digital Futures postdoctoral research grant, and the Swedish Research Council (Vetenskapsr{\aa}det) under the project Securing Things (2017-04804: S{\"a}kra saker: S{\"a}kra sakernas Internet). Publisher Copyright: {\textcopyright} 2022 by The USENIX Association. All Rights Reserved.; Symposium on Usable Privacy and Security, SOUPS ; Conference date: 07-08-2022 Through 09-08-2022",

year = "2022",

language = "English",

pages = "613--631",

booktitle = "Proceedings of the 18th Symposium on Usable Privacy and Security, SOUPS 2022",

publisher = "USENIX -The Advanced Computing Systems Association",

address = "United States",

}

Being Hacked : Understanding Victims' Experiences of IoT Hacking. / Rostami, Asreen; Vigren, Minna; Raza, Shahid et al.
Proceedings of the 18th Symposium on Usable Privacy and Security, SOUPS 2022. USENIX -The Advanced Computing Systems Association, 2022. s. 613-631.

Tutkimustuotos: Artikkeli kirjassa/konferenssijulkaisussa › Conference article in proceedings › Scientific › vertaisarvioitu

TY - GEN

T1 - Being Hacked : Understanding Victims' Experiences of IoT Hacking

AU - Rostami, Asreen

AU - Vigren, Minna

AU - Raza, Shahid

AU - Brown, Barry

N1 - Conference code: 18

PY - 2022

Y1 - 2022

N2 - From light bulbs to smart locks, IoT is increasingly embedded into our homes and lives. This opens up new vulnerabilities as IoT devices can be hacked and manipulated to cause harm or discomfort. In this paper we document users' experiences of having their IoT systems hacked through 210 self-reports from Reddit, device support forums, and Amazon review pages. These reports and the discussion around them show how uncertainty is at the heart of 'being hacked'. Hacks are sometimes difficult to detect, and users can mistake unusual IoT behaviour as evidence of a hack, yet this can still cause considerable emotional hurt and harm. In discussion, we shift from seeing hacks as technical system failings to be repaired, to seeing them as sites for care and user support. Such a shift in perspective opens a new front in designing for hacking - not just prevention but alleviating harm.

AB - From light bulbs to smart locks, IoT is increasingly embedded into our homes and lives. This opens up new vulnerabilities as IoT devices can be hacked and manipulated to cause harm or discomfort. In this paper we document users' experiences of having their IoT systems hacked through 210 self-reports from Reddit, device support forums, and Amazon review pages. These reports and the discussion around them show how uncertainty is at the heart of 'being hacked'. Hacks are sometimes difficult to detect, and users can mistake unusual IoT behaviour as evidence of a hack, yet this can still cause considerable emotional hurt and harm. In discussion, we shift from seeing hacks as technical system failings to be repaired, to seeing them as sites for care and user support. Such a shift in perspective opens a new front in designing for hacking - not just prevention but alleviating harm.

UR - https://www.scopus.com/pages/publications/85140871837

UR - http://www.diva-portal.org/smash/get/diva2:1716770/FULLTEXT01.pdf

M3 - Conference article in proceedings

AN - SCOPUS:85140871837

SP - 613

EP - 631

BT - Proceedings of the 18th Symposium on Usable Privacy and Security, SOUPS 2022

PB - USENIX -The Advanced Computing Systems Association

T2 - Symposium on Usable Privacy and Security

Y2 - 7 August 2022 through 9 August 2022

ER -

Being Hacked : Understanding Victims' Experiences of IoT Hacking

Abstrakti

Conference

Rahoitus

Muut tiedostot ja linkit

Sormenjälki

Siteeraa tätä