{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,22]],"date-time":"2025-10-22T10:48:24Z","timestamp":1761130104250,"version":"build-2065373602"},"reference-count":41,"publisher":"MDPI AG","issue":"4","license":[{"start":{"date-parts":[[2023,8,1]],"date-time":"2023-08-01T00:00:00Z","timestamp":1690848000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Norte Portugal Regional Operational Programme","award":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"],"award-info":[{"award-number":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"]}]},{"name":"European Regional Development Fund (ERDF)","award":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"],"award-info":[{"award-number":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"]}]},{"name":"Key Digital Technologies Joint Undertaking (KDT JU)","award":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"],"award-info":[{"award-number":["NORTE 2020","NORTE-01-0145-FEDER-000044","101097267"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JSAN"],"abstract":"The fast development and adoption of IoT technologies has been enabling their application into increasingly sensitive domains, such as Medical and Industrial IoT, in which safety and cyber-security are paramount. While the number of deployed IoT devices increases annually, they still present severe cyber-security vulnerabilities, becoming potential targets and entry points for further attacks. As these nodes become compromised, attackers aim to set up stealthy communication behaviours, to exfiltrate data or to orchestrate nodes in a cloaked fashion, and network timing covert channels are increasingly being used with such malicious intents. The IEEE 802.15.4 is one of the most pervasive protocols in IoT and a fundamental part of many communication infrastructures. Despite this fact, the possibility of setting up such covert communication techniques on this medium has received very little attention. We aim to analyse the performance and feasibility of such covert-channel implementations upon the IEEE 802.15.4 protocol, particularly upon the DSME behaviour, one of the most promising for large-scale time critical communications. This enables us to better understand the involved risk of such threats and help support the development of active cyber-security mechanisms to mitigate these threats, which, for now, we provide in the form of practical network setup recommendations.<\/jats:p>","DOI":"10.3390\/jsan12040060","type":"journal-article","created":{"date-parts":[[2023,8,1]],"date-time":"2023-08-01T09:24:24Z","timestamp":1690881864000},"page":"60","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Performance Assessment and Mitigation of Timing Covert Channels over the IEEE 802.15.4"],"prefix":"10.3390","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4215-3238","authenticated-orcid":false,"given":"Ricardo","family":"Severino","sequence":"first","affiliation":[{"name":"PORTIC, Polytechnic Institute of Porto, Rua Arquitecto Lob\u00e3o Vital, 172, 4200-375 Porto, Portugal"}]},{"given":"Jo\u00e3o","family":"Rodrigues","sequence":"additional","affiliation":[{"name":"PORTIC, Polytechnic Institute of Porto, Rua Arquitecto Lob\u00e3o Vital, 172, 4200-375 Porto, Portugal"}]},{"given":"Jo\u00e3o","family":"Alves","sequence":"additional","affiliation":[{"name":"ISEP-IPP, Instituto Superior de Engenharia do Porto, Rua Dr. Ant\u00f3nio Bernardino de Almeida, 431, 4249-015 Porto, Portugal"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5976-8853","authenticated-orcid":false,"given":"Luis Lino","family":"Ferreira","sequence":"additional","affiliation":[{"name":"ISEP-IPP, Instituto Superior de Engenharia do Porto, Rua Dr. Ant\u00f3nio Bernardino de Almeida, 431, 4249-015 Porto, Portugal"},{"name":"INESC-TEC, Rua Dr. Roberto Frias, 4200-465 Porto, Portugal"}]}],"member":"1968","published-online":{"date-parts":[[2023,8,1]]},"reference":[{"key":"ref_1","unstructured":"U.S. Department of Defense."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"644","DOI":"10.1016\/j.comcom.2019.12.030","article-title":"Intelligence in the Internet of Medical Things era: A systematic review of current and future trends","volume":"150","author":"Nawaz","year":"2020","journal-title":"Comput. Commun."},{"key":"ref_3","first-page":"88","article-title":"Architecting user-centric internet of things for smart agriculture","volume":"23","author":"Sinha","year":"2019","journal-title":"Sustain. Comput. Inform. Syst."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"105668","DOI":"10.1016\/j.cie.2019.01.042","article-title":"Using IoT data and applications to improve port-based intermodal supply chains","volume":"139","author":"Onieva","year":"2020","journal-title":"Comput. Ind. Eng."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"23","DOI":"10.1016\/j.pbiomolbio.2020.01.001","article-title":"T cell receptors, mechanosensors, catch bonds and immunotherapy","volume":"153","author":"Wang","year":"2020","journal-title":"Prog. Biophys. Mol. Biol."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"325","DOI":"10.1016\/j.comcom.2019.11.044","article-title":"Internet of Things based acquisition system of industrial intelligent bar code for smart city applications","volume":"150","author":"Liu","year":"2020","journal-title":"Comput. Commun."},{"key":"ref_7","unstructured":"Statista (2022, July 24). Number of IoT Devices 2015\u20132025. Available online: https:\/\/www.statista.com\/statistics\/471264\/iot-number-of-connected-devices-worldwide\/."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"1125","DOI":"10.1109\/JIOT.2017.2683200","article-title":"A Survey on Internet of Things: Architecture, Enabling Technologies, Security and Privacy, and Applications","volume":"4","author":"Lin","year":"2017","journal-title":"IEEE Internet Things J."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"2483","DOI":"10.1109\/JIOT.2017.2767291","article-title":"Evaluating Critical Security Issues of the IoT World: Present and Future Challenges","volume":"5","author":"Frustaci","year":"2018","journal-title":"IEEE Internet Things J."},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"012050","DOI":"10.1088\/1742-6596\/1325\/1\/012050","article-title":"A Novel Timing-based Network Covert Channel Detection Method","volume":"1325","author":"Lu","year":"2019","journal-title":"J. Phys. Conf. Ser."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"3378","DOI":"10.1109\/JIOT.2020.2968153","article-title":"Covert Wireless Communication in IoT Network: From AWGN Channel to THz Band","volume":"7","author":"Liu","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Caviglione, L., Merlo, A., and Migliardi, M. Covert Channels in IoT Deployments through Data Hiding Techniques. Proceedings of the 2018 32nd International Conference on Advanced Information Networking and Applications Workshops (WAINA), Krakow, Poland.","DOI":"10.1109\/WAINA.2018.00144"},{"key":"ref_13","unstructured":"(2023, July 24). SecurityWeek 70 Percent of IoT Devices Vulnerable to Cyberattacks: HP. Available online: https:\/\/www.securityweek.com\/70-iot-devices-vulnerable-cyberattacks-hp\/."},{"key":"ref_14","unstructured":"Larson, S. (2023, July 24). A Smart Fish Tank Left a Casino Vulnerable to Hackers. Available online: https:\/\/money.cnn.com\/2017\/07\/19\/technology\/fish-tankhack-darktrace\/index.html."},{"key":"ref_15","unstructured":"Stanislav, M., and Beardsley, T. (2023, July 24). HACKING IoT: A Case Study on Baby Monitor Exposures and Vulnerabilities. Available online: https:\/\/www.rapid7.com\/globalassets\/external\/docs\/Hacking-IoT-A-Case-Study-on-Baby-Monitor-Exposures-and-Vulnerabilities.pdf."},{"key":"ref_16","unstructured":"Simon, S. (2023, July 24). \u2018Internet Of Things\u2019 Hacking Attack Led to Widespread Outage of Popular Websites. NPR, 2016. Available online: https:\/\/www.npr.org\/2016\/10\/22\/498954197\/internet-outage-update-internet-of-things-hacking-attack-led-to-outage-of-popula."},{"key":"ref_17","unstructured":"Krebs, B. (2023, July 24). Mirai IoT Botnet Co-Authors Plead Guilty\u2014Krebs on Security. Available online: https:\/\/krebsonsecurity.com\/2017\/12\/mirai-iot-botnet-co-authors-plead-guilty\/."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"80","DOI":"10.1109\/MC.2017.201","article-title":"DDoS in the IoT: Mirai and other botnets","volume":"50","author":"Kolias","year":"2017","journal-title":"Computer"},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"197","DOI":"10.3390\/a6020197","article-title":"Enforcing Security Mechanisms in the IP-Based Internet of Things: An Algorithmic Overview","volume":"6","author":"Cirani","year":"2013","journal-title":"Algorithms"},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"118","DOI":"10.1016\/j.dcan.2017.04.003","article-title":"A roadmap for security challenges in the Internet of Things","volume":"4","author":"Natalizio","year":"2018","journal-title":"Digit. Commun. Netw."},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"1550147716682738","DOI":"10.1177\/1550147716682738","article-title":"Evaluating energy efficiency of Internet of Things software architecture based on reusable software components","volume":"13","author":"Kim","year":"2017","journal-title":"Int. J. Distrib. Sens. Netw."},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Hu, J., Lin, C., and Li, X. (2016, January 1\u20134). Relationship Privacy Leakage in Network Traffics. Proceedings of the 2016 25th International Conference on Computer Communication and Networks (ICCCN), Waikoloa, HI, USA.","DOI":"10.1109\/ICCCN.2016.7568566"},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Caviglione, L. (2021). Trends and Challenges in Network Covert Channels Countermeasures. Appl. Sci., 11.","DOI":"10.3390\/app11041641"},{"key":"ref_24","unstructured":"(2020). IEEE Standard for Low-Rate Wireless Networks (Standard No. IEEE Std 802.15.4-2020)."},{"key":"ref_25","unstructured":"(2012). IEEE Standard for Local and Metropolitan Area Networks\u2014Part 15.4: Low-Rate Wireless Personal Area Networks (LR-WPANs) Amendment 1: MAC Sublayer, IEEE."},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"613","DOI":"10.1145\/362375.362389","article-title":"A note on the confinement problem","volume":"16","author":"Lampson","year":"1973","journal-title":"Commun. ACM"},{"key":"ref_27","doi-asserted-by":"crossref","unstructured":"Berson, T.A., and Beth, T. (1989). Proceedings of the Local Area Network Security, Springer. Lecture Notes in Computer Science.","DOI":"10.1007\/3-540-51754-5"},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1109\/MWC.2017.1800062","article-title":"Covert Timing Channels for IoT over Mobile Networks","volume":"25","author":"Zhang","year":"2018","journal-title":"IEEE Wirel. Commun."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3023872","article-title":"A Survey of Timing Channels and Countermeasures","volume":"50","author":"Biswas","year":"2017","journal-title":"ACM Comput. Surv."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"42","DOI":"10.1109\/IOTM.001.2200079","article-title":"A Reliable Covert Channel for Stealthy Data Transmission for Internet-of-Underwater-Things","volume":"5","author":"Baker","year":"2022","journal-title":"IEEE Internet Things Mag."},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Liu, B., Gu, C., He, S., and Chen, J. (2023, January 9\u201312). LoPhy: A Resilient and Fast Covert Channel over LoRa PHY. Proceedings of the 22nd International Conference on Information Processing in Sensor Networks, San Antonio, TX, USA.","DOI":"10.1145\/3583120.3586952"},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Hou, N., and Zheng, Y. (2020, January 13\u201316). CloakLoRa: A Covert Channel over LoRa PHY. Proceedings of the 2020 IEEE 28th International Conference on Network Protocols (ICNP), Madrid, Spain.","DOI":"10.1109\/ICNP49622.2020.9259364"},{"key":"ref_33","doi-asserted-by":"crossref","first-page":"108079","DOI":"10.1016\/j.comnet.2021.108079","article-title":"Robust authentication for automotive control networks through covert channels","volume":"193","author":"Vanderhallen","year":"2021","journal-title":"Comput. Netw."},{"key":"ref_34","doi-asserted-by":"crossref","unstructured":"Nain, A.K., and Rajalakshmi, P. (2016, January 12\u201314). A reliable covert channel over IEEE 802.15.4 using steganography. Proceedings of the 2016 IEEE 3rd World Forum on Internet of Things, WF-IoT 2016, Reston, VA, USA.","DOI":"10.1109\/WF-IoT.2016.7845486"},{"key":"ref_35","doi-asserted-by":"crossref","unstructured":"Tuptuk, N., and Hailes, S. (2015, January 23\u201327). Covert channel attacks in pervasive computing. Proceedings of the 2015 IEEE International Conference on Pervasive Computing and Communications (PerCom), St. Louis, MO, USA.","DOI":"10.1109\/PERCOM.2015.7146534"},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Martins, D., and Guyennet, H. (2010, January 4\u20136). Steganography in MAC layers of 802.15.4 protocol for securing wireless sensor networks. Proceedings of the 2010 2nd International Conference on Multimedia Information Networking and Security, Nanjing, China.","DOI":"10.1109\/MINES.2010.175"},{"key":"ref_37","doi-asserted-by":"crossref","first-page":"8892896","DOI":"10.1155\/2020\/8892896","article-title":"A Survey of Key Technologies for Constructing Network Covert Channel","volume":"2020","author":"Tian","year":"2020","journal-title":"Secur. Commun. Netw."},{"key":"ref_38","doi-asserted-by":"crossref","unstructured":"Severino, R., Rodrigues, J., and Ferreira, L.L. (2022, January 6\u20139). Exploring Timing Covert Channel Performance over the IEEE 802.15.4. Proceedings of the 2022 IEEE 27th International Conference on Emerging Technologies and Factory Automation (ETFA), Stuttgart, Germany.","DOI":"10.1109\/ETFA52439.2022.9921473"},{"key":"ref_39","unstructured":"Scholz, J., and von Bodisco, A. Towards an Open Source Implementation of the IEEE 802.15.4 DSME Link Layer. Proceedings of the 15. GI\/ITG KuVS Fachgespr\u00e4ch Sensornetze."},{"key":"ref_40","first-page":"81","article-title":"Prototype WSN Platform for Performing Dynamic Monitoring of Civil Engineering Structures","volume":"Volume 6","author":"Proulx","year":"2011","journal-title":"Proceedings of the Sensors, Instrumentation and Special Topics"},{"key":"ref_41","doi-asserted-by":"crossref","first-page":"279","DOI":"10.1016\/j.micpro.2018.05.012","article-title":"Active flow control using dense wireless sensor and actuator networks","volume":"61","author":"Viana","year":"2018","journal-title":"Microprocess. Microsyst."}],"container-title":["Journal of Sensor and Actuator Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2224-2708\/12\/4\/60\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T20:23:58Z","timestamp":1760127838000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2224-2708\/12\/4\/60"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,8,1]]},"references-count":41,"journal-issue":{"issue":"4","published-online":{"date-parts":[[2023,8]]}},"alternative-id":["jsan12040060"],"URL":"https:\/\/doi.org\/10.3390\/jsan12040060","relation":{},"ISSN":["2224-2708"],"issn-type":[{"type":"electronic","value":"2224-2708"}],"subject":[],"published":{"date-parts":[[2023,8,1]]}}}