TU Darmstadt / ULB / TUbiblio

Modular Vulnerability Indication for the IoT in IP-based Networks

Egert, Rolf and Grube, Tim and Born, Dustin and Mühlhäuser, Max (2019):
Modular Vulnerability Indication for the IoT in IP-based Networks.
In: IEEE GLOBECOM, Waikoloa, Hawaii, 09.12.2019 - 13.12.2019, [Conference or Workshop Item]

Abstract

With the rapidly increasing number of Internet of Things (IoT) devices and their extensive integration into peoples’ daily lives, the security of those devices is of primary importance. Nonetheless, many IoT devices suffer from the absence, or the bad application, of security concepts, which leads to severe vulnerabilities in those devices. To achieve early detection of potential vulnerabilities, network scanner tools are frequently used. However, most of those tools are highly specialized; thus, multiple tools and a meaningful correlation of their results are required to obtain an adequate listing of identified network vulnerabilities. To simplify this process, we propose a modular framework for automated network reconnaissance and vulnerability indication in IP-based networks. It allows integrating a diverse set of tools as either, scanning tools or analysis tools. Moreover, the framework enables result aggregation of different modules and allows information sharing between modules facilitating the development of advanced analysis modules. Additionally, intermediate scanning and analysis data is stored, enabling a historical view of derived information and also allowing users to retrace decision-making processes. We show the framework’s modular capabilities by implementing one scanner module and three analysis modules. The automated process is then evaluated using an exemplary scenario with common IP-based IoT components.

Item Type: Conference or Workshop Item
Erschienen: 2019
Creators: Egert, Rolf and Grube, Tim and Born, Dustin and Mühlhäuser, Max
Title: Modular Vulnerability Indication for the IoT in IP-based Networks
Language: English
Abstract:

With the rapidly increasing number of Internet of Things (IoT) devices and their extensive integration into peoples’ daily lives, the security of those devices is of primary importance. Nonetheless, many IoT devices suffer from the absence, or the bad application, of security concepts, which leads to severe vulnerabilities in those devices. To achieve early detection of potential vulnerabilities, network scanner tools are frequently used. However, most of those tools are highly specialized; thus, multiple tools and a meaningful correlation of their results are required to obtain an adequate listing of identified network vulnerabilities. To simplify this process, we propose a modular framework for automated network reconnaissance and vulnerability indication in IP-based networks. It allows integrating a diverse set of tools as either, scanning tools or analysis tools. Moreover, the framework enables result aggregation of different modules and allows information sharing between modules facilitating the development of advanced analysis modules. Additionally, intermediate scanning and analysis data is stored, enabling a historical view of derived information and also allowing users to retrace decision-making processes. We show the framework’s modular capabilities by implementing one scanner module and three analysis modules. The automated process is then evaluated using an exemplary scenario with common IP-based IoT components.

Divisions: 20 Department of Computer Science
20 Department of Computer Science > Telecooperation
Event Title: IEEE GLOBECOM
Event Location: Waikoloa, Hawaii
Event Dates: 09.12.2019 - 13.12.2019
Date Deposited: 29 Oct 2019 12:16
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)

View Item View Item