CreScan: A Rule-Based Security Auditing and Remediation Tool for Crestron Smart Home Systems

As the increasing adoption of Crestron home automation systems in smart environments continues, the strong cybersecurity of such installations has become a top concern. The problem of this concern is addressed by this master's thesis in the form of proposing and developing a new tool that is intended to provide automated security scans for installation professionals of Crestron-based smart home systems. The primary objective of this research is to provide technicians with a total solution to assess the security position of Crestron installations according to relevant regulations and industry standards. The suggested tool conducts an automatic audit, inspecting the configuration settings, network design, and communication protocols adopted within the Crestron setup. It does this through an approach that employs a rule-based solution that infuses different cybersecurity standards and regulations applicable in a smart home environment. It scans the installation against these pre-configured rules, flagging possible security gaps and vulnerabilities. The tool further categorizes the severity of each vulnerability, providing technicians with a prioritized list of issues to tackle. The output of the tool is an organized and detailed report that presents findings and recommendations to enhance security within the Crestron home automation system. The report is presented in simple language that is easily understandable by technical and non-technical stakeholders, facilitating successful communication of security vulnerabilities and proposed actions to counter them. Additionally, the tool offers corrective action recommendations, suggesting best practices and configurations to neutralize detected vulnerabilities. This proactive approach not only secures the Crestron installation but also educates technicians on security best practices, making the smart home system more secure and resilient. Conclusion: The development and application of this technology are a significant contribution to cybersecurity engineering, providing a viable solution to enhancing the security of Crestron-based smart home installations. While the Internet of Things appears to be growing more pervasive, this study will focus on reinforcing secure smart environment foundations, encouraging the implementation of best cybersecurity practices in installing and even upgrading Crestron automation systems for residences.