We study how to mitigate the effects of energy attacks in the batteryless Internet of Things (IoT). Battery-less IoT devices live and die with ambient energy, as they use energy harvesting to power their operation. They are employed in a multitude of applications, including safety-critical ones such as biomedical implants. Due to scarce energy intakes and limited energy buffers, their executions become intermittent, alternating periods of active operation with periods of recharging their energy buffers. Experimental evidence exists that shows how controlling ambient energy allows an attacker to steer a device execution in unintended ways: energy provisioning effectively becomes an attack vector. We design, implement, and evaluate a mitigation system for energy attacks. By taking into account the specific application requirements and the output of an attack detection module, we tune task execution rates and optimize energy management. This ensures continued application execution in the event of an energy attack. When a device is under attack, our solution ensures the execution of 23.3% additional application cycles compared to the baselines we consider and increases task schedulability by at least 21%, while enabling a 34% higher peripheral availability.

翻译：我们研究了如何缓解无电池物联网中的能量攻击影响。无电池物联网设备依赖环境能量生存与运行，通过能量收集技术维持其工作。这些设备被广泛应用于各类场景，包括生物医学植入物等安全关键型应用。由于能量采集量稀缺且储能缓冲器有限，其执行过程呈现间歇性特征，即在活跃运行与能量缓冲器充电状态间交替切换。现有实验证据表明，攻击者可通过控制环境能量来非预期地操控设备执行流程：能量供给实际上已演变为一种攻击向量。我们设计、实现并评估了一种能量攻击缓解系统。通过结合具体应用需求与攻击检测模块的输出，该系统可调节任务执行速率并优化能量管理，从而确保设备在遭受能量攻击时仍能持续运行。当设备处于攻击状态时，相较于我们采用的基准方案，本方案能够多执行23.3%的应用循环，任务可调度性提升至少21%，同时外设可用性提高34%。