ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Journal Article A Malware Distribution Simulator for the Verification of Network Threat Prevention Tools
Cited 7 time in scopus Download 239 time Share share facebook twitter linkedin kakaostory
Authors
Song-Yi Hwang, Jeong-Nyeo Kim
Issue Date
2021-10
Citation
Sensors, v.21, no.21, pp.1-23
ISSN
1424-8220
Publisher
MDPI
Language
English
Type
Journal Article
DOI
https://dx.doi.org/10.3390/s21216983
Abstract
With the expansion of the Internet of Things (IoT), security incidents about exploiting vulnerabilities in IoT devices have become prominent. However, due to the characteristics of IoT devices such as low power and low performance, it is difficult to apply existing security solutions to IoT devices. As a result, IoT devices have easily become targets for cyber attackers, and malware attacks on IoT devices are increasing every year. The most representative is the Mirai malware that caused distributed denial of service (DDoS) attacks by creating a massive IoT botnet. Moreover, Mirai malware has been released on the Internet, resulting in increasing variants and new malicious codes. One of the ways to mitigate distributed denial of service attacks is to render the creation of massive IoT botnets difficult by preventing the spread of malicious code. For IoT infrastructure security, security solutions are being studied to analyze network packets going in and out of IoT infrastructure to detect threats, and to prevent the spread of threats within IoT infrastructure by dynamically controlling network access to maliciously used IoT devices, network equipment, and IoT services. However, there is a great risk to apply unverified security solutions to real-world environments. In this paper, we propose a malware simulation tool that scans vulnerable IoT devices assigned a private IP address, and spreads malicious code within IoT infrastructure by injecting malicious code download command into vulnerable devices. The malware simulation tool proposed in this paper can be used to verify the functionality of network threat detection and prevention solutions.
KSP Keywords
Detection and Prevention, Distributed Denial of Service attacks, Distributed denial of service (DDoS) attacks, IP address, Internet of thing(IoT), IoT Devices, IoT botnets, IoT services, Low-Power, Malicious code, Malware distribution
This work is distributed under the term of Creative Commons License (CCL)
(CC BY)
CC BY