Visible to the public Client-side Security Assessment and Security Protection Scheme for Smart TV Network

TitleClient-side Security Assessment and Security Protection Scheme for Smart TV Network
Publication TypeConference Paper
Year of Publication2020
AuthorsBao, L., Wu, S., Yu, S., Huang, J.
Conference Name2020 IEEE 6th International Conference on Computer and Communications (ICCC)
Date PublishedDec. 2020
ISBN Number978-1-7281-8635-1
KeywordsBridges, Cable TV, client-side, command injection attacks, composability, Debugging, intelligent data, Logic gates, Metrics, Networked Control Systems Security, Predictive Metrics, pubcrawl, resilience, Resiliency, security, security assessment, security protection, smart TV, TV network, Web and internet services

TV networks are no longer just closed networks. They are increasingly carrying Internet services, integrating and interoperating with home IoT and the Internet. In addition, client devices are becoming intelligent. At the same time, they are facing more security risks. Security incidents such as attacks on TV systems are commonplace, and there are many incidents that cause negative effects. The security protection of TV networks mainly adopts security protection schemes similar to other networks, such as constructing a security perimeter; there are few security researches specifically carried out for client-side devices. This paper focuses on the mainstream architecture of the integration of HFC TV network and the Internet, and conducts a comprehensive security test and analysis for client-side devices including EOC cable bridge gateways and smart TV Set-Top-BoX. Results show that the TV network client devices have severe vulnerabilities such as command injection and system debugging interfaces. Attackers can obtain the system control of TV clients without authorization. In response to the results, we put forward systematic suggestions on the client security protection of smart TV networks in current days.

Citation Keybao_client-side_2020