We study how to mitigate the effects of energy attacks in the batteryless Internet of Things (IoT). Battery-less IoT devices live and die with ambient energy, as they use energy harvesting to power their operation. They are employed in a multitude of applications, including safety-critical ones such as biomedical implants. Due to scarce energy intakes and limited energy buffers, their executions become intermittent, alternating periods of active operation with periods of recharging their energy buffers. Experimental evidence exists that shows how controlling ambient energy allows an attacker to steer a device execution in unintended ways: energy provisioning effectively becomes an attack vector. We design, implement, and evaluate a mitigation system for energy attacks. By taking into account the specific application requirements and the output of an attack detection module, we tune task execution rates and optimize energy management. This ensures continued application execution in the event of an energy attack. When a device is under attack, our solution ensures the execution of 23.3% additional application cycles compared to the baselines we consider and increases task schedulability by at least 21%, while enabling a 34% higher peripheral availability.

翻译：我们研究了如何在无电池物联网（IoT）中减缓能量攻击的影响。无电池物联网设备依赖能量采集维持运行，其工作状态随环境能量变化而存续。这些设备广泛应用于包括生物医学植入体等安全关键型场景在内的多种应用中。由于能量获取稀缺且能量缓冲区有限，设备的执行过程呈现间歇性特征，即在活跃运行与能量缓冲区充电之间交替。已有实验证据表明，通过控制环境能量，攻击者能够以非预期方式操控设备执行过程：能量供给实质上已成为一种攻击向量。我们设计、实现并评估了一套针对能量攻击的缓解系统。通过考虑特定应用需求及攻击检测模块的输出，我们调节任务执行速率并优化能量管理策略，从而确保在遭受能量攻击时应用仍能持续运行。当设备遭受攻击时，我们的方案相比基准方法能多执行23.3%的应用周期，任务可调度性提升至少21%，同时外设可用性提高34%。