Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Händelsekonstruktion genom säkrande och analys av data från ett hemautomationssystem
Linköping University, Department of Electrical Engineering, Computer Engineering.
Linköping University, Department of Electrical Engineering, Computer Engineering.
2019 (Swedish)Independent thesis Basic level (degree of Bachelor), 10,5 credits / 16 HE creditsStudent thesisAlternative title
Event Reconstruction by Securing and Analyzing Data from a Home Automation System (English)
Abstract [sv]

I detta examensarbete har tidsstämplar extraherats ur ett forensiskt perspektiv från ett hemautomationssystem med styrenheten Homey från Athom. Först konstruerades ett fiktivt händelsescenario gällande ett inbrott i en lägenhet med ett hemautomationssystem. Hemautomationssystemet bestod av flera perifera enheter som använde olika trådlösa nätverksprotokoll. Enheterna triggades under händelsescenariot. Därefter testades olika metoder för att få ut data i form av tidsstämplar. De metoder som testades var rest-API, UART och chip-off på flashminnet medan JTAG inte hanns med på grund av tidsbrist. Den metod som gav bäst resultat var rest-API:t som möjliggjorde extrahering av alla tidsstämplar samt information om alla enheter. I flashminnet hittades alla tidsstämplar, men det var inte möjligt att koppla ihop dessa tidsstämplar med en specifik enhet utan att använda information från rest-API:t. Trots att rest-API:t gav bäst resultat så var det den metod som krävde en mängd förutsättningar i form av bland annat inloggningsuppgifter eller en rootad mobil. Med hjälp av de extraherade tidsstämplarna rekonstruerades sedan händelsescenariot för inbrottet.

Abstract [en]

The purpose of this bachelor thesis was to extract timestamps from a home automation system with a control unit named Homey in a forensic perspective. The first step was to create a course of event regarding a burglar breaking into an apartment with home automation. The home automation system consisted of some peripheral units using different types of wireless network protocols. All these units were triggered during the break in. Thereafter different types of methods were tested in an attempt to extract the timestamps for each unit. These methods included rest-API, UART and chip-off on a flash memory. The method using JTAG were not tested due to lack of time. Rest-API was the method that provided most information about the units and time stamps. The flash memory also contained every timestamp, however it did not provide any information about which timestamp belonged to which unit. Even though the rest-API was the best method to extract data, it was also the method with most requirements such as credentials or a rooted smartphone. With the extracted timestamps it was possible to reconstruct the course of events of the break-in.

Place, publisher, year, edition, pages
2019. , p. 35
Keywords [en]
Homey, forensic, home automation system, smart home, log data, flash memory, UART, chip-off, rest-API, event reconstruction, IoT, Internet of Things
Keywords [sv]
Homey, forensiskt, loggfiler, tidsstämplar, extrahering, hemautomationssystem, sensorer, flashminne, UART, chip-off, rest-API, händelserekonstruktion, IoT
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Identifiers
URN: urn:nbn:se:liu:diva-157619ISRN: LiTH-ISY-EX-ET--19/0486--SEOAI: oai:DiVA.org:liu-157619DiVA, id: diva2:1325892
External cooperation
NFC
Subject / course
Electrical Engineering
Presentation
2019-06-13, Algoritmen, Linköpings universitet, 581 83 Linköping, Linköping, 10:00 (Swedish)
Examiners
Available from: 2019-06-18 Created: 2019-06-17 Last updated: 2019-09-05Bibliographically approved

Open Access in DiVA

Examensrapport(1512 kB)35 downloads
File information
File name FULLTEXT01.pdfFile size 1512 kBChecksum SHA-512
a2e6748a0a671830ad53c20f59218237bca5ef22ac320ad7222bb4bb27ed5d3ef94353d928b17b6c5d3498e19424402d150ca23b8d6d9fcc4d03e95a5d64f494
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Baghyari, RozaNykvist, Carolina
By organisation
Computer Engineering
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 35 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 137 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf