IoT Honeypot – HTTP WebCam
DIPLOMA IN INFOCOMM SECURITY MANAGEMENT
A study released by Hewlett-Packard found that 70% of devices connected to the Internet are vulnerable to some form of attack. With the exponential growth of Internet of Things (IoTs), there is a rising concern on the increasing attack vectors. In order to study attackers' methods and to facilitate the collection of data of such attacks, we made a honeypot that emulates IoT services. This allows us to understand the new cyber threat landscape of IoT.
The project aims to deliver an IoT honeypot. For the project, a webcam interface was simulated and hosted on a server which is open to the Internet. The webcam interface simulates the HTTP protocol by streaming a live webcam footage. Protocols such as the SSH and XMPP protocols were also simulated. Anything attackers try to do – uploading malicious files, redirecting users to a malicious webpage, etc. – will be captured and analysed.
The project aims not only to deliver a IoT honeypot tool, but also to spread awareness to the public that IoTs are not completely secure.
Honeypots can be used to capture and analyse commonly used attacks, and their methods. Countermeasures can be implemented accordingly to prevent them from happening.
IoT honeypot can be a useful tool for determining the weaknesses of an IoT protocol, and testing of these protocols. IoT honeypots can help us map out the threat landscape of IoT devices, and allow us to increase awareness in the industry.
Project Mentor: Christopher Lek
Project Team: Low Shien Kiat, Darren Neo, Suteja Bijjala Naga Krishnan, Cheong Zun Jie
PROJECT STATUS: COMPLETED 2015
SHOWCASED: SINGAPORE POLYTECHNIC GRADUATION SHOWCASE – RENDER 2016