I-D Action: draft-faibish-iot-ddos-usecases-06.txt
internet-drafts@ietf.org Sun, 19 December 2021 21:19 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 200F93A08A4 for <i-d-announce@ietf.org>; Sun, 19 Dec 2021 13:19:10 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-faibish-iot-ddos-usecases-06.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 7.41.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <163994875005.21130.1903244477446284574@ietfa.amsl.com>
Date: Sun, 19 Dec 2021 13:19:10 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/77bkxu99EqXMnewEkp9L3BV_b2I>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Dec 2021 21:19:10 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Test Tools for IoT DDoS vulnerability scanning
Authors : Sorin Faibish
Mashruf Kabir Chowdhury
Filename : draft-faibish-iot-ddos-usecases-06.txt
Pages : 10
Date : 2021-12-19
Abstract:
This document specifies several usecases related to the different
ways IoT devices are exploited by malicious adversaries to
instantiate Distributed Denial of Services (DDoS) attacks. The
attacks are generted from IoT devices that have no proper protection
against generating unsolicited communication messages targeting a
certain network and creating large amounts of network traffic. The
attackers take advantage of breaches in the configuration data in
unprotected IoT devices exploited for DDoS attacks. The attackers
take advantage of the IoT devices that can send network packets
that were generated by malicious code that interacts with an OS
implementation that runs on the IoT devices. The prupose of this
draft is to present possible IoT DDoS usecases that need to be
prevented by TEE. The major enabler of such attacks is related to
IoT devices that have no OS or unprotected EE OS and run
code that is downloaded to them from the TA and modified by
man-in-the-middle that inserts malicious code in the OS. This draft
adds list of MUD files for most IoT devices.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-faibish-iot-ddos-usecases/
There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-faibish-iot-ddos-usecases-06
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-faibish-iot-ddos-usecases-06
Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- I-D Action: draft-faibish-iot-ddos-usecases-06.txt internet-drafts