University of Twente Student Theses
Stepping out of the MUD : contextual network threat information for IoT devices with manufacturer-provided behavioural profiles
Morgese, Luca (2021) Stepping out of the MUD : contextual network threat information for IoT devices with manufacturer-provided behavioural profiles.
PDF
3MB |
Abstract: | Besides the unprecedented benefits that the Internet of Things (IoT) brings, it comes with a lack of adequate security measures, leading to attacks multiplying every year. Enhancing collection and sharing of actionable IoT threats intelligence is a crucial step to counter these trends. Currently, IoT threat intelligence is costly to ob- tain, especially at scale. Thus, in this work, we propose a novel approach to produce near real-time and fine-grained information on IoT network threats, from real-world van- tage points. We use the Manufacturer Usage Description specification to collect necessarily-anomalous IoT traffic from multiple deployments, and obtain an open window on malicious traffic targeting IoT at scale. We implement and validate our approach on two IoT deployments. We show that we can detect when devices from different de- ployments are being synchronously targeted by similar or different attack patterns. We demonstrate that we can obtain a heatmap view of IoT network anomalies, related to specific devices and deployments. |
Item Type: | Essay (Master) |
Clients: | TNO, The Hague, Netherlands |
Faculty: | EEMCS: Electrical Engineering, Mathematics and Computer Science |
Subject: | 54 computer science |
Programme: | Computer Science MSc (60300) |
Link to this item: | https://purl.utwente.nl/essays/89157 |
Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Repository Staff Only: item control page