Reliable Identification of IoT Devices from Passive Network Traffic Analysis: Requirements and Recommendations

Ash Andrews, George Oikonomou, Simon M D Armour, Paul Thomas, Thomas Cattermole

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

1 Citation (Scopus)
19 Downloads (Pure)

Abstract

Internet of Things (IoT) devices are becoming more widespread in networks and can give malicious actors new vectors to compromise networks. Of particular concern are devices running out-of-date firmware versions with known vulnerabilities. Securing real-world IoT networks therefore relies on knowing what devices are on a network and knowing what specific firmware versions they are running. At present, though, commercial solutions that include IoT device identification are not reliable at this level of granularity, and the academic literature has largely ignored the problem. In this paper, we highlight the shortcomings present in current IoT device identification and use these observations to develop a set of lab requirements. We then present our own lab setup for providing reliable real-world IoT device identification that meets this set of requirements. Building on this work, we develop a schema for documenting device versions and event histories that accompany network packet traces as metadata.
Original languageEnglish
Title of host publication2023 IEEE World Forum on Internet of Things
Subtitle of host publicationThe Blue Planet: A Marriage of Sea and Space, WF-IoT 2023
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Number of pages6
ISBN (Electronic)979-8-3503-1161-7
ISBN (Print)979-8-3503-1162-4
DOIs
Publication statusPublished - 30 May 2024
EventIEEE 9th World Forum on Internet of Things - Aveiro Congress Center, Aveiro, Portugal
Duration: 12 Oct 202327 Oct 2023
https://wfiot2023.iot.ieee.org/

Publication series

NameIEEE World Forum on Internet of Things (WF-IoT)
PublisherIEEE
ISSN (Print)2769-4003
ISSN (Electronic)2768-1734

Conference

ConferenceIEEE 9th World Forum on Internet of Things
Abbreviated titleWFIoT 2023
Country/TerritoryPortugal
CityAveiro
Period12/10/2327/10/23
OtherThe 9th IEEE World Forum on Internet of Things (IEEE WFIoT2023) is the premier event of the IEEE IoT Technical Community, a multiple Society initiative aggregating the wide expertise inherent to the IoT domain.
Internet address

Bibliographical note

Publisher Copyright:
© 2023 IEEE.

Fingerprint

Dive into the research topics of 'Reliable Identification of IoT Devices from Passive Network Traffic Analysis: Requirements and Recommendations'. Together they form a unique fingerprint.

Cite this