Abstract
Today, IoT devices are flooding, and traffic is increasing rapidly. The Internet of Things creates a variety of added value through connections between devices, while many devices are easily targeted by attackers due to security vulnerabilities. In the IoT environment, security diagnosis has problems such as having to provide different solutions for different types of devices in network situations where various types of devices are interlocked, personal leakage of security solutions themselves, and high cost, etc. To avoid such problems, a TCP-based active scan was presented. However, the TCP-based active scan has limitations that it is difficult to be applied to real-time systems due to long detection times. To complement this, this study uses UDP-based approaches. Specifically, a lightweight active scan algorithm that effectively identifies devices using UPnP protocols (SSDP, MDNS, and MBNS) that are most commonly used by manufacturers is proposed. The experimental results of this study have shown that devices can be distinguished by more than twice the true positive and recall at an average time of 1524 times faster than Nmap, which has a firm position in the field.
| Original language | English |
|---|---|
| Pages (from-to) | 20-34 |
| Number of pages | 15 |
| Journal | KSII Transactions on Internet and Information Systems |
| Volume | 15 |
| Issue number | 1 |
| DOIs | |
| Publication status | Published - 2021 Jan |
Keywords
- Active Scan
- IoT Device Identification
- UDP Based Scan
- UPnP Protocols
ASJC Scopus subject areas
- Information Systems
- Computer Networks and Communications