how risky are real users ifttt applets
play

How Risky Are Real Users IFTTT Applets? Camille Cobb ( - PowerPoint PPT Presentation

May 26, 2023 •226 likes •399 views

How Risky Are Real Users IFTTT Applets? Camille Cobb ( @camPossible) , Milijana Surbatovich, Anna Kawakami, Mahmood Sharif, Lujo Bauer, Anupam Das, Limin Jia Smart-home devices can lead to risks End-User Programming 2 Smart-home devices

  1. How Risky Are Real Users’ IFTTT Applets? Camille Cobb ( @camPossible) , Milijana Surbatovich, Anna Kawakami, Mahmood Sharif, Lujo Bauer, Anupam Das, Limin Jia

  2. Smart-home devices can lead to risks End-User Programming 2

  3. Smart-home devices can lead to risks 3

  4. “applet” this that + + if then “trigger” “action” 4

  5. SECRECY VIOLATION if then SmartThings post a sensor message is closed to Slack 19,323 unique INTEGRITY VIOLATION applets [Surbatovich et al. 2017] 5 5

  6. SECRECY VIOLATION if then SmartThings post a sensor message is closed to Slack 50% Violating INTEGRITY 50% VIOLATION Safe [Surbatovich et al. 2017] 6 6

  7. Moving from theory to practice if then SmartThings post a ● What fraction of users’ sensor message IFTTT applets are is closed to Slack violating, in practice? ● How much and what Mailbox? To coworkers? types of harm are Main entrance? To my family? Door to a safe? Just to me? IFTTT users actually exposed to? 7

  8. We collected 743 rules from 28 IFTTT users if then SmartThings post a sensor message “If front Door is closed to Slack Sensor closed then post a message to a Slack Mailbox? To coworkers? service” [P28] Main entrance? To my family? Door to a safe? Just to me? 8

  9. Evaluating participants’ rules: automated analysis finds similar results 59% Violating 41% Safe 9

  10. Evaluating participants’ rules: considering context enables more accurate analysis Are all of these harmful? No! 59% Violating 743 unique rules Are any of 41% these potentially Safe harmful? 10

  11. Evaluating participants’ rules: considering context enables more accurate analysis Are all of these harmful? No! 59% Violating 743 unique rules Are any of SmartThings add a row to 41% if then these potentially Google sensor Safe harmful? is closed spreadsheet 11

  12. Evaluating participants’ rules: considering context enables more accurate analysis Are all of these harmful? Also safe No! 59% Violating 743 unique only ~14% rules Are any of 41% harmful these potentially Safe harmful? (not 59%) 12

  13. Evaluating participants’ rules: considering context enables more accurate analysis Are all of these harmful? Also safe No! 59% Violating 743 unique only ~14% rules Are any of 41% harmful these potentially Safe harmful? (not 59%) Yes! 13

  14. Evaluating participants’ rules: considering context enables more accurate analysis Are all of these harmful? if Alice’s then create Also safe No! 59% presence is journal Violating detected entry 743 unique only ~14% rules Are any of 41% harmful these potentially Safe harmful? (not 59%) Yes! 14

  15. Evaluating participants’ rules: considering context enables more accurate analysis 20% surveillance Are all of these risks for incidental harmful? users Also safe No! 59% Violating 743 unique only ~14% rules Are any of 41% harmful these potentially Safe harmful? (not 59%) Yes! 15

  16. How Risky Are Real Users’ IFTTT Applets? ● Real user data → New insights about risks & harms ○ Many “violating” rules are not harmful ○ “Non-violating” rules could be harmful ○ More in the paper! Camille Cobb ( @camPossible) , Milijana Surbatovich, Anna Kawakami, Mahmood Sharif, Lujo Bauer, Anupam Das, Limin Jia

Recommend

Find your own Applet! AppletPro helps users efficiently search and manage applets from different

Find your own Applet! AppletPro helps users efficiently search and manage applets from different

Find your own Applet! AppletPro helps users efficiently search and manage applets from different platforms by grabbing data from these platforms. Issues 1. Inefficient to search for applets you need from multiple platforms 2. Hard to manage

234 views • 7 slides
Applets and Applications Developing Applets and Applications Application run by user,

Applets and Applications Developing Applets and Applications Application run by user,

Applets and Applications Developing Applets and Applications Application run by user, double-clickable/command-line Create a JPanel with the guts of the GUI/logic No restrictions on access, reads files, URLS, What will be in the

256 views • 6 slides
AppletPro helps users efficiently search and manage applets* by aggregating search results across

AppletPro helps users efficiently search and manage applets* by aggregating search results across

AppletPro helps users efficiently search and manage applets* by aggregating search results across different applet platforms. Applet Reminder *Applet: a trigger-action application providing simple services across apps such as Gmail, Trello, and

422 views • 13 slides
An An Empirical Characterization of IFTTT Ecosystem,

An An Empirical Characterization of IFTTT Ecosystem,

An An Empirical Characterization of IFTTT Ecosystem, Usage, and Performance Xianghang Mi, Feng Qian, Ying Zhang, XiaoFeng Wang Indiana University

354 views • 21 slides
Applets Murray Cole Applets 1 Portability and Security JVM and bytecode make

Applets Murray Cole Applets 1 Portability and Security JVM and bytecode make

I V N E U R S E I H T Y T O H F G R E U D I B N Applets Murray Cole Applets 1 Portability and Security JVM and bytecode make portability easy facilitates sharing of programs, which can be good and

428 views • 18 slides
The Risky Business of Onboarding Rick Pastoor @rickpastoor Onboarding: how new users get in

The Risky Business of Onboarding Rick Pastoor @rickpastoor Onboarding: how new users get in

The Risky Business of Onboarding Rick Pastoor @rickpastoor Onboarding: how new users get in @rickpastoor But wait, Im a developer? Why should I care? @rickpastoor 30 day projects: research for dummies @rickpastoor Identify Teach

559 views • 28 slides
APPLETS Write an HTML documents to host an applet Understand simple applets Use Labels

APPLETS Write an HTML documents to host an applet Understand simple applets Use Labels

APPLETS Write an HTML documents to host an applet Understand simple applets Use Labels with simple AWT applets Write a simple Swing applet and use a JLabel Add JTextField and JButton components to Swing applet Using the

949 views • 51 slides
CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet

CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet

CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet and more tools of trade Life cycle of an applet Simple drawing and events Conclusions CS126 21-1 Randy Wang Applets: Beyond Animated

624 views • 7 slides
CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet

CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet

CS 126 Lecture S2: Introduction to Java Applets Outline Introductions Your first applet and more tools of trade Life cycle of an applet Simple drawing and events Conclusions CS126 21-1 Randy Wang Applets: Beyond Animated

468 views • 13 slides
Applets as front-ends to server-side programming Objectives Introduce applets Examples of

Applets as front-ends to server-side programming Objectives Introduce applets Examples of

Applets as front-ends Applets as front-ends to server-side programming Objectives Introduce applets Examples of Java graphical programming How-to put an applet in a HTML page The HTML Applet tag and alternatives Applet

492 views • 18 slides
Lecture 10: Comparing Risky Prospects Alexander Wolitzky MIT 14.121 1 Risky Prospects Last class:

Lecture 10: Comparing Risky Prospects Alexander Wolitzky MIT 14.121 1 Risky Prospects Last class:

Lecture 10: Comparing Risky Prospects Alexander Wolitzky MIT 14.121 1 Risky Prospects Last class: studied decision-makers subjective attitude toward risk. This class: study objective properties of risky prospects (lotteries, gambles) themselves,

555 views • 18 slides
Risky Choice Framing Effects D E C I S I O N - M A K I N G I N T H E C O N T E X T O F P E R

Risky Choice Framing Effects D E C I S I O N - M A K I N G I N T H E C O N T E X T O F P E R

Risky Choice Framing Effects D E C I S I O N - M A K I N G I N T H E C O N T E X T O F P E R S O N A L R E L E V A N C E Kristin Radford Psychology 120 August 20 12 The Original Risky Choice Problem The Fram ing of Decisions and the

83 views • 7 slides
Bonds Ian Sykes James Bonds Bonds are risky too! Bonds are risky too! Still

Bonds Ian Sykes James Bonds Bonds are risky too! Bonds are risky too! Still

Bonds Ian Sykes James Bonds Bonds are risky too! Bonds are risky too! Still the best match Best match Diversification Diversifier New opportunities Extra returns No more James Bond puns

76 views • 7 slides
Modeling Portfolios that Contain Risky Assets Stochastic Models I: One Risky Asset C. David

Modeling Portfolios that Contain Risky Assets Stochastic Models I: One Risky Asset C. David

Modeling Portfolios that Contain Risky Assets Stochastic Models I: One Risky Asset C. David Levermore University of Maryland, College Park Math 420: Mathematical Modeling January 26, 2012 version 2011 Charles David Levermore c Modeling

217 views • 18 slides
Modeling Portfolios that Contain Risky Assets Stochastic Models II: Portfolios with Risky Assets

Modeling Portfolios that Contain Risky Assets Stochastic Models II: Portfolios with Risky Assets

Modeling Portfolios that Contain Risky Assets Stochastic Models II: Portfolios with Risky Assets C. David Levermore University of Maryland, College Park Math 420: Mathematical Modeling April 3, 2012 version 2011 Charles David Levermore c

210 views • 16 slides
Applets as front-ends to server-side programming DD1335 (Lecture 7) Basic Internet Programming

Applets as front-ends to server-side programming DD1335 (Lecture 7) Basic Internet Programming

Applets as front-ends Applets as front-ends to server-side programming DD1335 (Lecture 7) Basic Internet Programming Spring 2010 1 / 18 Applets as front-ends Applets as front-ends to server-side programming Objectives DD1335 (Lecture 7)

1.02k views • 98 slides
An Analysis of 200,000 IFTTT Recipes Blase Ur, Melwyn Pak Yong Ho, Stephen Brawner, Jiyun Lee,

An Analysis of 200,000 IFTTT Recipes Blase Ur, Melwyn Pak Yong Ho, Stephen Brawner, Jiyun Lee,

Trigger-Action Programming in the Wild: An Analysis of 200,000 IFTTT Recipes Blase Ur, Melwyn Pak Yong Ho, Stephen Brawner, Jiyun Lee, Sarah Mennicken, Noah Picard, Diane Schulze, Michael Littman 1 2 Trigger-Action Programming 3

619 views • 43 slides
ADDRESSING RISKY BEHAVIOUR SOUTH DEEP RESPONSE TO COVID-19 02 July 2020 Risky behaviour Not

ADDRESSING RISKY BEHAVIOUR SOUTH DEEP RESPONSE TO COVID-19 02 July 2020 Risky behaviour Not

ADDRESSING RISKY BEHAVIOUR SOUTH DEEP RESPONSE TO COVID-19 02 July 2020 Risky behaviour Not maintaining Not maintaining Failure to self- Incorrect/ social distancing hygiene protocols screen and/or inconsistent at work, in the at work,

346 views • 5 slides
Applets and HTML Chapter 13 Chapter 13 1 Reminders Project 8 due Dec 8 @ 10:30 pm

Applets and HTML Chapter 13 Chapter 13 1 Reminders Project 8 due Dec 8 @ 10:30 pm

Applets and HTML Chapter 13 Chapter 13 1 Reminders Project 8 due Dec 8 @ 10:30 pm Project 6 regrades due by midnight tonight Submit all files (including your exception classes) Nothing scheduled for CS180 next week: No

410 views • 26 slides
Exam review Designing classes Chapters 1-8 (I said 1-9 before) Applets are not covered.

Exam review Designing classes Chapters 1-8 (I said 1-9 before) Applets are not covered.

Exam review Designing classes Chapters 1-8 (I said 1-9 before) Applets are not covered. A list of textbook items to pay special attention to And some terminology . Also linked from Day 12 on the schedule page HW 1-10

343 views • 22 slides
Designing and using interactive applets for conceptual understanding Anthony Morphett The

Designing and using interactive applets for conceptual understanding Anthony Morphett The

Designing and using interactive applets for conceptual understanding Anthony Morphett The University of Melbourne ANZMC Melbourne 10 December 2014 1 / 20 Visualisation and conceptual thinking How can we support our students to develop a

494 views • 22 slides
The MobiAssist is an assistive device that provides visually impaired users with real time

The MobiAssist is an assistive device that provides visually impaired users with real time

The MobiAssist is an assistive device that provides visually impaired users with real time feedback about their environment through the use of wearable electronics that pairs with an application on their cellular phone. Shawn Melville

573 views • 10 slides
Applications and Applets An applet is a program delivered via the web security issues,

Applications and Applets An applet is a program delivered via the web security issues,

Applications and Applets An applet is a program delivered via the web security issues, sandbox model where does code/images/etc come from? How is it delivered? what browsers support the 1.1 AWT event model (what about 1.2)? Use

382 views • 3 slides
Outline Java beans Applets CS1007: Object Oriented Design and Programming in Java

Outline Java beans Applets CS1007: Object Oriented Design and Programming in Java

Outline Java beans Applets CS1007: Object Oriented Design and Programming in Java Lecture #16 Nov 22 Reading: finish chapter 7, starting 8 Shlomo Hershkop shlomo@cs.columbia.edu Announcements Feedback 4 more lectures

515 views • 9 slides

More recommend