A Methodological Approach for Assessing Amplified Reflection Distributed Denial of Service on the Internet of Things

Gondim, João José Costa; Albuquerque, Robson de Oliveira; Nascimento, Anderson C. A.; Villalba, Luis Javier García; Kim, Tai-hoon

doi:10.3390/s16111855

Cited by 18 publications

(3 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Denial of Service (DoS): In this class of attacks, malicious users cripple the services offered by a site, for example by flooding a site with many requests [114]. In this way, they limit or deny the system services to legitimate users.…”

Section: ) Infrastructure Datasetsmentioning

confidence: 99%

A Survey of Deep Learning Techniques for Cybersecurity in Mobile Networks

Rodríguez

Otero

Gutiérrez

et al. 2021

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

The widespread use of mobile devices, as well as the increasing popularity of mobile services has raised serious cybersecurity challenges. In the last years, the number of cyberattacks has grown dramatically, as well as their complexity. Traditional cybersecurity systems have failed to detect complex attacks, unknown malware, and they do not guarantee the preservation of user privacy. Consequently, cybersecurity systems have embraced Deep Learning (DL) models as they provide efficient detection of novel attacks and better accuracy. This paper presents a comprehensive survey of recent cybersecurity works that use DL in mobile and wireless networks. It covers all cybersecurity aspects: infrastructure threads and attacks, software attacks and privacy preservation. First, we provide a detailed overview of DL techniques applied, or with potential applications, to cybersecurity. Then, we review cybersecurity works based on DL. For each cybersecurity threat or attack, we discuss the challenges for using DL methods. For each contribution, we review the implementation details and the performance of the solution. In a nutshell, this paper constitutes the first survey that provides a complete review of the DL methods for cybersecurity. Given the analysis performed, we identify the most effective DL methods for the different threats and attacks.

show abstract

Section: ) Infrastructure Datasetsmentioning

confidence: 99%

A Survey of Deep Learning Techniques for Cybersecurity in Mobile Networks

Rodríguez

Otero

Gutiérrez

et al. 2021

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

show abstract

“…Security on the protocol level is not involved. For example, the abuse of IoT communication protocols and the AR-DDoS [37] attack is performed by the IoT communication protocols Constrained Application Protocol (CoAP) [38], SSDP [39], and SNMP. Its target is not the flaws of IoT devices.…”

Section: Attack Surface On the Protocol Interface Layermentioning

confidence: 99%

A Survey of Security Vulnerability Analysis, Discovery, Detection, and Mitigation on IoT Devices

Zhuge

Cao

et al. 2020

Future Internet

View full text Add to dashboard Cite

With the prosperity of the Internet of Things (IoT) industry environment, the variety and quantity of IoT devices have grown rapidly. IoT devices have been widely used in smart homes, smart wear, smart manufacturing, smart cars, smart medical care, and many other life-related fields. With it, security vulnerabilities of IoT devices are emerging endlessly. The proliferation of security vulnerabilities will bring severe risks to users’ privacy and property. This paper first describes the research background, including IoT architecture, device components, and attack surfaces. We review state-of-the-art research on IoT device vulnerability discovery, detection, mitigation, and other related works. Then, we point out the current challenges and opportunities by evaluation. Finally, we forecast and discuss the research directions on vulnerability analysis techniques of IoT devices.

show abstract

“…In particular, authors focus on how to optimize the key thresholds for estimating the channel gain in Channel-Aware Encryption (CAE). In [ 24 ], authors methodically assess the possible impacts of a specific class of Amplified Reflection Distributed Denial of Service (AR-DDoS) attacks against IoT. In [ 25 ] authors propose a protocol designed for multi-hop communications between Device-to-Device (D2D)-enabled terminals equipped with light-weight security mechanisms.…”

Section: Related Workmentioning

confidence: 99%

Enabling Secure XMPP Communications in Federated IoT Clouds Through XEP 0027 and SAML/SASL SSO

Celesti

Fazio

Villari

2017

Sensors

View full text Add to dashboard Cite

Nowadays, in the panorama of Internet of Things (IoT), finding a right compromise between interactivity and security is not trivial at all. Currently, most of pervasive communication technologies are designed to work locally. As a consequence, the development of large-scale Internet services and applications is not so easy for IoT Cloud providers. The main issue is that both IoT architectures and services have started as simple but they are becoming more and more complex. Consequently, the web service technology is often inappropriate. Recently, many operators in both academia and industry fields are considering the possibility to adopt the eXtensible Messaging and Presence Protocol (XMPP) for the implementation of IoT Cloud communication systems. In fact, XMPP offers many advantages in term of real-time capabilities, efficient data distribution, service discovery and inter-domain communication compared to other technologies. Nevertheless, the protocol lacks of native security, data confidentiality and trustworthy federation features. In this paper, considering an XMPP-based IoT Cloud architectural model, we discuss how can be possible to enforce message signing/encryption and Single-Sign On (SSO) authentication respectively for secure inter-module and inter-domain communications in a federated environment. Experiments prove that security mechanisms introduce an acceptable overhead, considering the obvious advantages achieved in terms of data trustiness and privacy.

show abstract

A Methodological Approach for Assessing Amplified Reflection Distributed Denial of Service on the Internet of Things

Cited by 18 publications

References 22 publications

A Survey of Deep Learning Techniques for Cybersecurity in Mobile Networks

A Survey of Deep Learning Techniques for Cybersecurity in Mobile Networks

A Survey of Security Vulnerability Analysis, Discovery, Detection, and Mitigation on IoT Devices

Enabling Secure XMPP Communications in Federated IoT Clouds Through XEP 0027 and SAML/SASL SSO

Contact Info

Product

Resources

About