A Practical Wireless Exploitation Framework for Z Wave Networks

Abstract

Wireless Sensor Networks (WSN) are a growing subset of the emerging Internet of Things (IoT). WSNs reduce the cost of deployment over wired alternatives; consequently, use is increasing in home automation, critical infrastructure, smart metering, and security solutions. Few published works evaluate the security of proprietary WSN protocols due to the lack of low-cost and effective research tools. One such protocol is ITU-T G.9959-based Z-Wave, which maintains wide acceptance within the IoT market. This research utilizes a open source toolset, presented herein, called EZ-Wave to identify methods for exploiting Z-Wave devices and networks using Software-Defined Radios (SDR). Herein, techniques enabling active network reconnaissance, including network enumeration and device interrogation, are presented. Furthermore, a fuzzing framework is presented and utilized to identify three packet malformations resulting in anomalous device behavior. Finally, a method for classifying the three most common Z-Wave transceivers with >99 accuracy using preamble manipulation is identified and tested.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 24, 2016
Accession Number
AD1054454

Entities

People

  • Joseph L Hall

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Sensors
  • Space

DTIC Thesaurus Topics

  • Air Force
  • Computer Networks
  • Computer Programming
  • Computer Programs
  • Computers
  • Data Links
  • Detectors
  • Internet Of Things
  • Intrusion Detection
  • Network Protocols
  • Operating Systems
  • Personal Area Networks
  • Sensor Networks
  • Software Defined Radio
  • Test Methods
  • Wireless Communications
  • Wireless Sensor Networks

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.

Technology Areas

  • 5G
  • 5G - Internet of Things