Pre-Integration Security Assessment Framework (PIAF) for IoT Devices in Smart Homes

Details

Supervisors

Sadre, Ramin

Faculty

Ecole polytechnique de Louvain

Degree label

Master [120] en cybersécurité, à finalité spécialisée: conception et analyse de systèmes

Abstract

The rapid growth of Internet of Things (IoT) devices in smart home environments needs more attention. New devices provided by manufacturers have several security issues, primarily due to the lack of standardized pre-deployment assessment methodologies. This thesis proposes the Pre-Integration Assessment Framework (PIAF), an automated framework designed to evaluate the security posture of IoT devices before their deployment in smart home. PIAF combines active scanning and passive monitoring to build a detailed device profile. The framework performs an analysis by correlating device characteristics with known vulnerabilities (CVEs). A weighted scoring model then classifies each device into risk categories: unsafe, acceptable, or secure. The framework was implemented and tested on three popular TP-Link Tapo devices (smart plug, camera, and bulb), revealing critical and medium-risk vulnerabilities. PIAF provides a practical solution for both manufacturers and end-users.