Spill the Beans: Extrospection of Internet of Things by Exploiting Denial of Service

Sachidananda, Vinay and Bhairav, Suhas and Elovici, Yuval (2019) Spill the Beans: Extrospection of Internet of Things by Exploiting Denial of Service. EAI Endorsed Transactions on Security and Safety, 6 (20). e1. ISSN 2032-9393

[img]
Preview
Text
eai.13-7-2018.159803.pdf
Available under License Creative Commons Attribution No Derivatives.

Download (3MB) | Preview

Abstract

Internet of Things (IoT) exposes various vulnerabilities at different levels. One such exploitable vulnerability is Denial of Service (DoS). In this work, we focus on a large-scale extensive study of various forms of DoS and how it can be exploited in different protocols of IoT. We propose an attack and defense framework called OWL which is tailored for IoT and that can perform various forms of DoS on IP, Bluetooth, and Zigbee devices. We consider various DoS vulnerabilities such as illegitimate packet injection, Bluetooth Low Energy (BLE) scanning attack, Zigbee frame counter-attack, etc., regarding IP, Bluetooth and Zigbee devices. To understand how resilient is IoT for DoS, we propose two new metrics to measure the Resilience and the Quality of Service (QoS) degradation in IoT. We have conducted large-scale experimentation with real IoT devices in our security IoT testbed. The experiments conducted are for DoS, Distributed Denial of Service (DDoS) by setting up Mirai and Permanent Denial of Service (PDoS) using BrickerBot on various IoT devices. We have also compared our framework with the existing state of the art tools.

Item Type: Article
Uncontrolled Keywords: Security Analysis, Security and Privacy, Vulnerabilities, Denial of Service, Internet of Things
Subjects: H Social Sciences > H Social Sciences (General)
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
QA75 Electronic computers. Computer science
Depositing User: EAI Editor IV
Date Deposited: 26 Mar 2021 14:00
Last Modified: 26 Mar 2021 14:00
URI: https://eprints.eudl.eu/id/eprint/2115

Actions (login required)

View Item View Item