TY - GEN
T1 - Fending off IoT-hunting attacks at home networks
AU - Martin, Vincentius
AU - Cao, Qiang
AU - Benson, Theophilus
N1 - Publisher Copyright:
© 2017 Association for Computing Machinery.
PY - 2017/12/11
Y1 - 2017/12/11
N2 - Many attacks target vulnerabilities of home IoT devices, such as bugs in outdated software and weak passwords. The home network is at a vantage point for deploying security appliances to deal with such IoT attacks. We propose a comprehensive home network defense, Pot2DPI, and use it to raise an attacker’s uncertainty about devices and enable the home network to monitor traffic, detect anomalies, and filter malicious packets. The security offered by Pot2DPI comes from a synthesis of practical techniques: honeypot, deep packet inspection (DPI), and a realization of moving target defense (MTD) in port forwarding. In particular, Pot2DPI has a chain of honeypot and DPI that collects suspicious packet traces, acquires attack signatures, and installs filtering rules at a home router timely. Meanwhile, Pot2DPI shuffles the mapping of ports between the router and the devices connected to it, making a targeted attack difficult and defense more effective. Pot2DPI is our first step towards securing a smart home.
AB - Many attacks target vulnerabilities of home IoT devices, such as bugs in outdated software and weak passwords. The home network is at a vantage point for deploying security appliances to deal with such IoT attacks. We propose a comprehensive home network defense, Pot2DPI, and use it to raise an attacker’s uncertainty about devices and enable the home network to monitor traffic, detect anomalies, and filter malicious packets. The security offered by Pot2DPI comes from a synthesis of practical techniques: honeypot, deep packet inspection (DPI), and a realization of moving target defense (MTD) in port forwarding. In particular, Pot2DPI has a chain of honeypot and DPI that collects suspicious packet traces, acquires attack signatures, and installs filtering rules at a home router timely. Meanwhile, Pot2DPI shuffles the mapping of ports between the router and the devices connected to it, making a targeted attack difficult and defense more effective. Pot2DPI is our first step towards securing a smart home.
KW - Home network
KW - Honeypot
KW - IoT
KW - Moving target defense
UR - https://www.scopus.com/pages/publications/85040621736
U2 - 10.1145/3155921.3160640
DO - 10.1145/3155921.3160640
M3 - 会议稿件
AN - SCOPUS:85040621736
T3 - CAN 2017 - Proceedings of the 2017 Cloud-Assisted Networking Workshop, Part of CoNext 2017
SP - 67
EP - 72
BT - CAN 2017 - Proceedings of the 2017 Cloud-Assisted Networking Workshop, Part of CoNext 2017
PB - Association for Computing Machinery, Inc
T2 - 2nd Cloud-Assisted Networking Workshop, CAN 2017
Y2 - 12 December 2017 through 12 December 2017
ER -