TY - GEN
T1 - IConPAL
T2 - 2024 IEEE Secure Development Conference, SecDev 2024
AU - Alam, Mahbub
AU - Zhang, Siwei
AU - Rodriguez, Eric
AU - Nafis, Akib
AU - Hoque, Endadul
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024
Y1 - 2024
N2 - Safety and security concerns surrounding Internet-of-Things (IoT) platforms for smart homes have spurred the development of defense mechanisms to safeguard against unexpected behaviors in accordance with safety and security policies. However, the need to manually craft policies in tool-specific languages increases the burden on humans. Previous attempts to address this issue have fallen short, either lacking portability or requiring human intervention in other forms. Therefore, in this paper, we propose iConPAL, an automated policy authoring assistant for IoT environments. iConPAL accepts a policy description in natural language (English) and translates it into a specific formal policy language. iConPAL leverages the capabilities of modern large language models (LLMs), employs prompt engineering to automatically generate few-shot learning prompts for the LLM, and post-processes the LLM's response to ensure the validity of the translated policy. We implemented a prototype of iConPAL and evaluated it on our curated dataset of 290 policies. We observed that iConPAL successfully translated 93.61% policies, of which 93.57% were semantically correct. iConPAL's high accuracy makes it suitable for assisting ordinary users in drafting policies for smart homes.
AB - Safety and security concerns surrounding Internet-of-Things (IoT) platforms for smart homes have spurred the development of defense mechanisms to safeguard against unexpected behaviors in accordance with safety and security policies. However, the need to manually craft policies in tool-specific languages increases the burden on humans. Previous attempts to address this issue have fallen short, either lacking portability or requiring human intervention in other forms. Therefore, in this paper, we propose iConPAL, an automated policy authoring assistant for IoT environments. iConPAL accepts a policy description in natural language (English) and translates it into a specific formal policy language. iConPAL leverages the capabilities of modern large language models (LLMs), employs prompt engineering to automatically generate few-shot learning prompts for the LLM, and post-processes the LLM's response to ensure the validity of the translated policy. We implemented a prototype of iConPAL and evaluated it on our curated dataset of 290 policies. We observed that iConPAL successfully translated 93.61% policies, of which 93.57% were semantically correct. iConPAL's high accuracy makes it suitable for assisting ordinary users in drafting policies for smart homes.
KW - IoT Security
KW - Policy Authoring and Enforcement
UR - http://www.scopus.com/inward/record.url?scp=85210582369&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85210582369&partnerID=8YFLogxK
U2 - 10.1109/SecDev61143.2024.00014
DO - 10.1109/SecDev61143.2024.00014
M3 - Conference contribution
AN - SCOPUS:85210582369
T3 - Proceedings - 2024 IEEE Secure Development Conference, SecDev 2024
SP - 76
EP - 92
BT - Proceedings - 2024 IEEE Secure Development Conference, SecDev 2024
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 7 October 2024 through 9 October 2024
ER -