Presentation is loading. Please wait.

Presentation is loading. Please wait.

Internet of Insecure Things

Published byWidya Rachman Modified over 6 years ago

Similar presentations

Presentation on theme: "Internet of Insecure Things"— Presentation transcript:

1 Internet of Insecure Things
Tanvi Dharmarha, Varun Agarwal | Adobe Systems

2 Buzz around IoT Internet of Things(IoT) has become an industry buzzword and in simplest terms it refers to integration of devices (or things) with the internet.

3 IoT everywhere Cars, electricity bulbs, health monitors, refrigerators and other kitchen appliances, smoke or fire alarms, alarm clocks etc are going smart as they integrate with the internet. As IoT grows in the industry, more devices join the list.

4 Internet of INSECURE Things
Device (Firmware) Internet Backend Data Transmission A flaw or loophole in the device or firmware, in the internet backend or in the data transmission can compromise privacy and security.

5 Default/Hardcoded credentials Firmware Vulnerabilities
Security Concerns Default/Hardcoded credentials Firmware Vulnerabilities Universal Plug and Play(UPnP) HeartBleed Bug

6 Default/Hardcoded credentials Firmware Vulnerabilities
Security Concerns Default/Hardcoded credentials Firmware Vulnerabilities Universal Plug and Play(UPnP) HeartBleed Bug

7 Default/Hardcoded credentials
IoT device manufacturing happens pretty much like non IoT device manufacturing. Not much is spent on firmware hence the firmware contains default or hardcoded credentials for it to work with and connect to backend. Software Lifecycle not followed – Due to conventional manufacturing, cost reductions and early time to market, Software Development Life Cycle (SDLC) is not followed while building firmware for IoT devices. This causes several developmental loopholes which can be exploited; the biggest being unsafe human machine interfaces (HMI).

8 Default/Hardcoded credentials Firmware Vulnerabilities
Security Concerns Default/Hardcoded credentials Firmware Vulnerabilities Universal Plug and Play(UPnP) HeartBleed Bug

9 Firmware Vulnerabilities

10 Default/Hardcoded credentials Firmware Vulnerabilities
Security Concerns Default/Hardcoded credentials Firmware Vulnerabilities Universal Plug and Play(UPnP) HeartBleed Bug

11 UPnP

12 Demystifying Mirai Botnet
What are Botnet Attacks What Is Mirai Mirai Botnet Code Walk Through Command and Control (CNC)

13 DDoS A Distributed Denial of Service (DDoS) attack is an attempt to make an online service unavailable by overwhelming it with traffic from multiple sources.

14 Random IP selection do { tmp = rand_next(); o1 = tmp & 0xff; o2 = (tmp >> 8) & 0xff; o3 = (tmp >> 16) & 0xff; o4 = (tmp >> 24) & 0xff; }

15 Random Port Selection ………………….. if (!tcph->syn) continue; if (!tcph->ack) if (tcph->rst) if (tcph->fin) if (htonl(ntohl(tcph->ack_seq) - 1) != iph->saddr) if (n < sizeof(struct iphdr) + sizeof(struct tcphdr)) continue; if (iph->daddr != LOCAL_ADDR) if (iph->protocol != IPPROTO_TCP) if (tcph->source != htons(23) && tcph->source != htons(2323))

16 Password Management Port Management Security Patches OWASP Guidelines
Preventive Steps Password Management Port Management Security Patches OWASP Guidelines

17 DataSets and Predictions
~500K CSV with summary of some real network traffic data date: yyyy-mm-dd (from through ) l_ipn: local IP (coded as an integer from 0-9) r_asn: remote ASN (an integer which identifies the remote ISP) f: flows (count of connnections for that day) Real traces are analyzed to create profiles for agents that generate real traffic for HTTP, SMTP, SSH, IMAP, POP3, and FTP.

18 Emphasize security from day one Lifecycle, future-proofing, updates
Key Takeaways Emphasize security from day one Lifecycle, future-proofing, updates Access control and device authentication Know your enemy Prepare for security breaches

19 For more info, please contact:. Tanvi Dharmarha. tbajajdh@adobe. com
For more info, please contact: Tanvi Dharmarha Varun Agarwal

Download ppt "Internet of Insecure Things"

Similar presentations

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by.

Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by.
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
Lecture 15 Denial of Service Attacks

Lecture 15 Denial of Service Attacks
1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.

1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.
Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.

Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.
1 Figure 5-4: Drivers of Performance Requirements: Traffic Volume and Complexity of Filtering Performance Requirements Traffic Volume (Packets per Second)

1 Figure 5-4: Drivers of Performance Requirements: Traffic Volume and Complexity of Filtering Performance Requirements Traffic Volume (Packets per Second)
1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.
B OTNETS T HREATS A ND B OTNETS DETECTION Mona Aldakheel 434920317 1.

B OTNETS T HREATS A ND B OTNETS DETECTION Mona Aldakheel
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.
Network Protocols. Why Protocols?  Rules and procedures to govern communication Some for transferring data Some for transferring data Some for route.

Network Protocols. Why Protocols?  Rules and procedures to govern communication Some for transferring data Some for transferring data Some for route.
By : Himanshu Mishra Nimish Agarwal CPSC 624.  A system designed to prevent unauthorized access to or from a private network.  It must have at least.

By : Himanshu Mishra Nimish Agarwal CPSC 624.  A system designed to prevent unauthorized access to or from a private network.  It must have at least.
Internet of Things Top Ten. Agenda -Introduction -Misconception -Considerations -The OWASP Internet of Things Top 10 Project -The Top 10 Walkthrough.

Internet of Things Top Ten. Agenda -Introduction -Misconception -Considerations -The OWASP Internet of Things Top 10 Project -The Top 10 Walkthrough.
Intrusion Detection Prepared by: Mohammed Hussein Supervised by: Dr. Lo’ai Tawalbeh NYIT- winter 2007.

Intrusion Detection Prepared by: Mohammed Hussein Supervised by: Dr. Lo’ai Tawalbeh NYIT- winter 2007.
Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.

Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.
IP Security IP sec IPsec is short for Internet Protocol Security. It was originally created as a part of IPv6, but has been retrofitted into IPv4. It.

IP Security IP sec IPsec is short for Internet Protocol Security. It was originally created as a part of IPv6, but has been retrofitted into IPv4. It.
Application Services COM211 Communications and Networks CDA College Theodoros Christophides

Application Services COM211 Communications and Networks CDA College Theodoros Christophides
Chapter 7 Denial-of-Service Attacks Denial-of-Service (DoS) Attack The NIST Computer Security Incident Handling Guide defines a DoS attack as: “An action.

Chapter 7 Denial-of-Service Attacks Denial-of-Service (DoS) Attack The NIST Computer Security Incident Handling Guide defines a DoS attack as: “An action.
Advanced Packet Analysis and Troubleshooting Using Wireshark 23AF

Advanced Packet Analysis and Troubleshooting Using Wireshark 23AF
Computer Security Status Update FOCUS Meeting, 28 March 2002 Denise Heagerty, CERN Computer Security Officer.

Computer Security Status Update FOCUS Meeting, 28 March 2002 Denise Heagerty, CERN Computer Security Officer.

Similar presentations

Ads by Google