Automated Security Audit Testbed For IP-Based IoT Devices Without Physical Access

被引:1
|
作者
Kumar, Ashutosh [1 ]
Peshvani, Brijesh [1 ]
Venkatesan, S. [1 ]
Kumar, Manish [1 ]
Yadav, Suneel [1 ]
Shukla, Sandeep Kumar [2 ]
机构
[1] Indian Inst Informat Technol Allahabad, Dept Informat Technol, Allahabad, Uttar Pradesh, India
[2] Indian Inst Technol Kanpur, Dept Comp Sci & Engn, Kanpur, Uttar Pradesh, India
来源
2023 10TH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS: SYSTEMS, MANAGEMENT AND SECURITY, IOTSMS | 2023年
关键词
IoT; Security Testbed; Penetration Testing; Reconnaissance; Device Security; INTERNET; FRAMEWORK;
D O I
10.1109/IOTSMS59855.2023.10325768
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
The need for the Internet of Things (IoT) is increasing, and various manufacturers produce devices to cater to the demand. The manufacturers produce the device by considering the performance and cost but do not concentrate on security. Hence, security auditing of the device is required before or while using it in a real-time environment. This paper proposes a security audit testbed to test the security of IoT devices from protocol to the application perspective without accessing the device physically. The proposed testbed includes reconnaissance and penetration testing to identify the vulnerability of the devices. The audit results of multiple IoT devices are presented to show the impact of the proposed testbed in identifying the vulnerabilities. The comparison of security audit testbeds shows that the proposed testbed has more coverage to provide better audit results than others.
引用
收藏
页码:96 / 103
页数:8
相关论文
共 50 条
  • [41] End-to-End Transport Security in the IP-based Internet of Things
    Brachmann, Martina
    Keoh, Sye Loong
    Morchon, Oscar Garcia
    Kumar, Sandeep S.
    2012 21ST INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATIONS AND NETWORKS (ICCCN), 2012,
  • [42] Analysis of the evolution to an IP-based UMTS terrestrial radio access network
    Venken, K
    Vinagre, IG
    De Vriendt, J
    IEEE WIRELESS COMMUNICATIONS, 2003, 10 (05): : 46 - 53
  • [43] Automated Security Analysis for Real-World IoT Devices
    Brun, Lelio
    Hasuo, Ichiro
    Ono, Yasushi
    Sekiyama, Taro
    PROCEEDINGS OF THE 12TH INTERNATIONAL WORKSHOP ON HARDWARE AND ARCHITECTURAL SUPPORT FOR SECURITY AND PRIVACY, HASP 2023, 2023, : 29 - 37
  • [44] A lightweight IPsec adaptation for small devices in IP-based mobile networks
    Park, JC
    Jun, AH
    8TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATION TECHNOLOGY, VOLS 1-3: TOWARD THE ERA OF UBIQUITOUS NETWORKS AND SOCIETIES, 2006, : U298 - U302
  • [45] IP-based broadband satellite access systems for interactive multimedia services
    Iuoras, N
    Le-Ngoc, T
    Ashour, M
    Elshabrawy, T
    CCECE 2003: CANADIAN CONFERENCE ON ELECTRICAL AND COMPUTER ENGINEERING, VOLS 1-3, PROCEEDINGS: TOWARD A CARING AND HUMANE TECHNOLOGY, 2003, : 695 - 698
  • [46] Mobility-aware MPLS in IP-based wireless access networks
    Kim, H
    Wong, KSD
    Chen, W
    Lau, CL
    GLOBECOM '01: IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-6, 2001, : 3444 - 3448
  • [47] Review of Security and Privacy-Based IoT Smart Home Access Control Devices
    Uppuluri, Sirisha
    Lakshmeeswari, G.
    WIRELESS PERSONAL COMMUNICATIONS, 2024, 137 (03) : 1601 - 1640
  • [48] Congestion control policies for IP-based CDMA radio access networks
    Kasera, SK
    Ramjee, R
    Thuel, SR
    Wang, X
    IEEE TRANSACTIONS ON MOBILE COMPUTING, 2005, 4 (04) : 349 - 362
  • [49] Connectivity, performance, and resiliency of IP-based CDMA radio access networks
    Bu, Tian
    Chan, Mun Choon
    Ramjee, Ram
    IEEE TRANSACTIONS ON MOBILE COMPUTING, 2006, 5 (08) : 1103 - 1118
  • [50] Object Security Scheme based on Access Policies using MQTT Protocol for IoT Devices
    Nathi, Rohan A.
    Sutar, Dimpal
    2019 10TH INTERNATIONAL CONFERENCE ON COMPUTING, COMMUNICATION AND NETWORKING TECHNOLOGIES (ICCCNT), 2019,
12345