IoT sandbox
Autor: | Raylin Tso, Min-Chun Tsai, Kai-Chi Chang |
---|---|
Rok vydání: | 2017 |
Předmět: |
Router
021110 strategic defence & security studies business.industry Computer science 0211 other engineering and technologies Botnet 020206 networking & telecommunications 02 engineering and technology computer.software_genre Computer security Sandbox (computer security) 0202 electrical engineering electronic engineering information engineering Malware Internet of Things business computer |
Zdroj: | ICC |
DOI: | 10.1145/3018896.3018898 |
Popis: | As we know, we are already facing IoT threat and under IoT attacks. However, there are only a few discussions on, how to analyze this kind of cyber threat and malwares. In this paper, we propose IoT sandbox which can support different type of CPU architecture. It can be used to analyze IoT malwares, collect network packets, identify spread method and record malwares behaviors. To make sure our IoT sandbox can be functional, we implement it and use the Zollard botnet for experiment. According to our experimental data, we found that at least 71,148 IP have been compromised. Some of them are IoT devices (DVR, Web Camera, Router WiFi Disk, Set-top box) and others are ICS devices (Heat pump and ICS data acquisition server). Based on our IoT sandbox technology, we can discover an IoT malware in an early stage. This could help IT manager or security experts to analysis and determine IDS rules. We hope this research can prevent IoT threat and enhance IoT Security in the near future. |
Databáze: | OpenAIRE |
Externí odkaz: |