IConPAL: LLM-guided Policy Authoring Assistant for Configuring IoT Defenses

Mahbub Alam, Siwei Zhang, Eric Rodriguez, Akib Nafis, Endadul Hoque

Research output: Chapter in Book/Entry/PoemConference contribution

Abstract

Safety and security concerns surrounding Internet-of-Things (IoT) platforms for smart homes have spurred the development of defense mechanisms to safeguard against unexpected behaviors in accordance with safety and security policies. However, the need to manually craft policies in tool-specific languages increases the burden on humans. Previous attempts to address this issue have fallen short, either lacking portability or requiring human intervention in other forms. Therefore, in this paper, we propose iConPAL, an automated policy authoring assistant for IoT environments. iConPAL accepts a policy description in natural language (English) and translates it into a specific formal policy language. iConPAL leverages the capabilities of modern large language models (LLMs), employs prompt engineering to automatically generate few-shot learning prompts for the LLM, and post-processes the LLM's response to ensure the validity of the translated policy. We implemented a prototype of iConPAL and evaluated it on our curated dataset of 290 policies. We observed that iConPAL successfully translated 93.61% policies, of which 93.57% were semantically correct. iConPAL's high accuracy makes it suitable for assisting ordinary users in drafting policies for smart homes.

Original languageEnglish (US)
Title of host publicationProceedings - 2024 IEEE Secure Development Conference, SecDev 2024
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages76-92
Number of pages17
ISBN (Electronic)9798350342482
DOIs
StatePublished - 2024
Event2024 IEEE Secure Development Conference, SecDev 2024 - Pittsburgh, United States
Duration: Oct 7 2024Oct 9 2024

Publication series

NameProceedings - 2024 IEEE Secure Development Conference, SecDev 2024

Conference

Conference2024 IEEE Secure Development Conference, SecDev 2024
Country/TerritoryUnited States
CityPittsburgh
Period10/7/2410/9/24

Keywords

  • IoT Security
  • Policy Authoring and Enforcement

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Safety, Risk, Reliability and Quality
  • Software

Fingerprint

Dive into the research topics of 'IConPAL: LLM-guided Policy Authoring Assistant for Configuring IoT Defenses'. Together they form a unique fingerprint.

Cite this