• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

HoneyThing: A New Honeypot Design for CPE Devices

Vol. 12, No. 9, September 29, 2018
10.3837/tiis.2018.09.021, Download Paper (Free):

Abstract

The Internet of Things (IoT) has become an emerging industry that is broadly used in many fields from industrial and agricultural manufacturing to home automation and hospitality industry. Because of the sheer number of connected devices transmitting valuable data, the IoT infrastructures have become a main target for cyber-criminals. One of the key challenges in protecting IoT devices is the lack of security measures by design. Although there are many hardware and software based security solutions (firewalls, honeypots, IPDS, anti-virus etc.) for information systems, most of these solutions cannot be applied to IoT devices because of the fact that IoT devices have limited computing resources (CPU, RAM,). In this paper, we propose a honeypot system called HoneyThing for modem/router devices (i.e. a kind of IoT device). HoneyThing emulates TR-069 protocol which is prevalent protocol used to remotely manage customer-premises equipment (CPE) devices, e.g. modems, routers. Honeything also serves an embedded web server simulating a few actual, critical vulnerabilities associated with the implementation of TR-069 protocol. To show effectiveness of the HoneyThing in capturing real world attacks, we have deployed it in the Internet. The obtained results are highly promising and facilitate to reveal network attacks targeting to CPE devices.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
Ö. Erdem, A. Pektaş, M. Kara, "HoneyThing: A New Honeypot Design for CPE Devices," KSII Transactions on Internet and Information Systems, vol. 12, no. 9, pp. 4512-4526, 2018. DOI: 10.3837/tiis.2018.09.021.

[ACM Style]
Ömer Erdem, Abdurrahman Pektaş, and Mehmet Kara. 2018. HoneyThing: A New Honeypot Design for CPE Devices. KSII Transactions on Internet and Information Systems, 12, 9, (2018), 4512-4526. DOI: 10.3837/tiis.2018.09.021.

[BibTeX Style]
@article{tiis:21879, title="HoneyThing: A New Honeypot Design for CPE Devices", author="Ömer Erdem and Abdurrahman Pektaş and Mehmet Kara and ", journal="KSII Transactions on Internet and Information Systems", DOI={10.3837/tiis.2018.09.021}, volume={12}, number={9}, year="2018", month={September}, pages={4512-4526}}