University of Twente Student Theses

Login

Stepping out of the MUD : contextual network threat information for IoT devices with manufacturer-provided behavioural profiles

Morgese, Luca (2021) Stepping out of the MUD : contextual network threat information for IoT devices with manufacturer-provided behavioural profiles.

[img] PDF
3MB
Abstract:Besides the unprecedented benefits that the Internet of Things (IoT) brings, it comes with a lack of adequate security measures, leading to attacks multiplying every year. Enhancing collection and sharing of actionable IoT threats intelligence is a crucial step to counter these trends. Currently, IoT threat intelligence is costly to ob- tain, especially at scale. Thus, in this work, we propose a novel approach to produce near real-time and fine-grained information on IoT network threats, from real-world van- tage points. We use the Manufacturer Usage Description specification to collect necessarily-anomalous IoT traffic from multiple deployments, and obtain an open window on malicious traffic targeting IoT at scale. We implement and validate our approach on two IoT deployments. We show that we can detect when devices from different de- ployments are being synchronously targeted by similar or different attack patterns. We demonstrate that we can obtain a heatmap view of IoT network anomalies, related to specific devices and deployments.
Item Type:Essay (Master)
Clients:
TNO, The Hague, Netherlands
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:54 computer science
Programme:Computer Science MSc (60300)
Link to this item:https://purl.utwente.nl/essays/89157
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page