Vulnerability Detection in IoT Firmware: A Survey

Xie, Wei; Jiang, Yikun; Tang, Yong; Ding, Ning; Gao, Yuanming

doi:10.1109/icpads.2017.00104

Cited by 36 publications

(23 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The most common reverse engineering techniques employed for IoT security analysis rely on network packets inspection or on more complex analysis of device firmware images. Several methodologies have been proposed in recent years to automate the analysis of device firmware, leveraging on techniques such as formal methods, fuzzing, static analysis and signature matching [13,14,27,29]. Recently, in addition to the analysis of firmware images, the automatic inspection of companion applications also proved to be an effective strategy [19,26].…”

Section: Esp-touch: Methodology Of Analysismentioning

confidence: 99%

A (in)Secure-by-Design IoT Protocol

Salzillo

Rak

2020

Proceedings of the 2020 Joint Workshop on CPS&IoT Security and Privacy

View full text Add to dashboard Cite

The number of IoT devices designed and marketed in these last years is continuously growing. These smart things are more often managed through the cloud, therefore more and more devices are connected both to the customer's local networks and to the Internet. Among the several network pairing mechanisms designed for the IoT domain, we examined the Smart Config family of protocols, a clever technology that allows an IoT device to be associated with an existing WiFi network by receiving special packets from an already network-paired smartphone. We investigate the threats and the technical details behind the ESP Touch protocol, a Smart Config implementation developed by Espressif Systems for its ESP32/8266 family of chips. Additionally, we present a security analysis of the same protocol implemented by the ITEAD Sonoff smart switches (and also by many other ESP-based devices), that we conducted by reverse-engineering the eWeLink mobile companion application. In conclusion, we describe a vulnerability (published as CVE-2020-12702) we found in the Quick Pairing mode of the eWeLink SDK that leads to a full WiFi credential disclosure during the device pairing process.

show abstract

Section: Esp-touch: Methodology Of Analysismentioning

confidence: 99%

A (in)Secure-by-Design IoT Protocol

Salzillo

Rak

2020

Proceedings of the 2020 Joint Workshop on CPS&IoT Security and Privacy

View full text Add to dashboard Cite

show abstract

“…There are several studies that have been dedicated to vulnerabilities in M-IoT and can be followed from [85]- [92]. Based on these, it becomes inevitably important to understand the concept, issues, scope and strength of the present state of security, privacy and trust for smart M-IoT.…”

Section: Vulnerabilities In Smart M-iotmentioning

confidence: 99%

Security, Privacy and Trust for Smart Mobile- Internet of Things (M-IoT): A Survey

et al. 2020

View full text Add to dashboard Cite

With an enormous range of applications, the Internet of Things (IoT) has magnetized industries and academicians from everywhere. IoT facilitates operations through ubiquitous connectivity by providing Internet access to all the devices with computing capabilities. With the evolution of wireless infrastructure, the focus from simple IoT has been shifted to smart, connected and mobile IoT (M-IoT) devices and platforms, which can enable low-complexity, low-cost and efficient computing through sensors, machines, and even crowdsourcing. All these devices can be grouped under a common term of M-IoT. Even though the positive impact on applications has been tremendous, security, privacy and trust are still the major concerns for such networks and insufficient enforcement of these requirements introduces non-negligible threats to M-IoT devices and platforms. Thus, it is important to understand the range of solutions which are available for providing a secure, privacy-compliant, and trustworthy mechanism for M-IoT. There is no direct survey available, which focuses on security, privacy, trust, secure protocols, physical layer security and handover protections in M-IoT. This paper covers such requisites and presents comparisons of statethe-art solutions for IoT which are applicable to security, privacy, and trust in smart and connected M-IoT networks. Apart from these, various challenges, applications, advantages, technologies, standards, open issues, and roadmap for security, privacy and trust are also discussed in this paper.

show abstract

“…content using a flash programmer tool. This allows the attacker to dump the existing firmware [9][10] as well as update it. The attacker will need physical access to the device in order to exploit the vulnerability.…”

Section: Universal Serial Bus (Usb)mentioning

confidence: 99%

Chip off IoT Devices: Attacks and Mitigations

2019

ijrte

View full text Add to dashboard Cite

Internet of Things (IoT) is the most emerging field in Information Technology. IoT will make real-world objects into virtual objects and allows them to be sensed remotely. The IoT biological community is changing and getting to be appealing over a more extensive scope of controls, consequently their development in prevalent innovation. Security and protection are the key issues for IoT applications and still face some huge difficulties. Pervasive IoT gadgets have genuine security suggestions as they happen in extensive numbers, are topographically dispersed and can be hard to physically verify. These gadgets may contain touchy or economically profitable information making them appealing to different types of assault. It is discovered that a large portion of the gadgets is defenseless against assaults on hardware, firmware as well as web interface level. In this paper, vulnerabilities due to Insufficient Security Configurability, Insecure Firmware, Security Misconfiguration of IoT devices, recommendations for those vulnerabilities and an approach to reproduce those attacks is explained so as to provide better security to IoT Devices.

show abstract

Vulnerability Detection in IoT Firmware: A Survey

Cited by 36 publications

References 4 publications

A (in)Secure-by-Design IoT Protocol

A (in)Secure-by-Design IoT Protocol

Security, Privacy and Trust for Smart Mobile- Internet of Things (M-IoT): A Survey

Chip off IoT Devices: Attacks and Mitigations

Contact Info

Product

Resources

About