Countermeasures against large-scale reflection DDoS attacks using exploit IoT devices

Yong-joon Lee; Hwa-sung Chae; Keun-wang Lee

doi:10.1080/00051144.2021.1885587

Automatika (Jan 2021)

Countermeasures against large-scale reflection DDoS attacks using exploit IoT devices

Yong-joon Lee,
Hwa-sung Chae,
Keun-wang Lee

Affiliations

Yong-joon Lee: Far East University
Hwa-sung Chae: IT Nomads Co., Ltd
Keun-wang Lee: Chungwoon University

DOI: https://doi.org/10.1080/00051144.2021.1885587
Journal volume & issue: Vol. 62, no. 1
pp. 127 – 136

Abstract

Read online

With the of utilizing IoT devices increasing recently, such devices are being infected with malicious codes and being used to carry out DDoS attacks. In particular, there have been cases of large-scale DDoS reflex attacks of 100GB or more using IoT devices such as wireless sharing devices, CCTVs and smart cars. There is a vulnerability that is being exploited for attacks through Simple Service Discovery Protocol (SSDP) to search for IoT devices. This study examines different types of IoT devices used in DDoS attacks, and conducts experiments in which reflection DDoS attacks are carried out on IoT devices in order to measure the attack threat levels. This study also suggests methods that IoT service operators can employ to remove IoT device vulnerabilities, as well as effective countermeasures that Internet service operators can apply to address reflection DDoS attacks that exploit IoT devices.

Published in Automatika

ISSN: 0005-1144 (Print); 1848-3380 (Online)
Publisher: Taylor & Francis Group
Country of publisher: United Kingdom
LCC subjects: Technology: Mechanical engineering and machinery: Control engineering systems. Automatic machinery (General); Technology: Technology (General): Industrial engineering. Management engineering: Automation
Website: https://www.tandfonline.com/journals/taut

About the journal

Abstract

Keywords